{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "MINED124", "name": "[MINED124] requirements.txt: `logfire` has no version pin: Unpinned pip requirement means every fresh install may resolv", "shortDescription": {"text": "[MINED124] requirements.txt: `logfire` has no version pin: Unpinned pip requirement means every fresh install may resolve a different version. Newer releases can introduce malicious code (typosquats, account compromises). Reproducible insta"}, "fullDescription": {"text": "Replace `logfire` with `logfire==<version>` and manage upgrades through PRs / Dependabot."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED111", "name": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or ", "shortDescription": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "fullDescription": {"text": "Either narrow the exception type, log the exception with `logger.exception(...)`, or re-raise after handling."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "WEB003", "name": "Public web service has no security.txt", "shortDescription": {"text": "Public web service has no security.txt"}, "fullDescription": {"text": "Add /.well-known/security.txt with Contact, Expires, Canonical, Preferred-Languages, and Policy fields. Keep the contact endpoint monitored."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "DKR001", "name": "Docker final stage has no non-root USER", "shortDescription": {"text": "Docker final stage has no non-root USER"}, "fullDescription": {"text": "Add a non-root USER in the final runtime stage after files and permissions are prepared."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "DKR013", "name": "Dockerfile ADD downloads remote content", "shortDescription": {"text": "Dockerfile ADD downloads remote content"}, "fullDescription": {"text": "Use curl/wget with a pinned URL, verify checksum or signature, and prefer COPY for local files."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.84, "cwe": "", "owasp": ""}}, {"id": "DKR002", "name": "Dockerfile base image has no explicit tag", "shortDescription": {"text": "Dockerfile base image has no explicit tag"}, "fullDescription": {"text": "Pin the image to a supported version tag or digest, for example python:3.13-slim or image@sha256:..."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "DKR009", "name": "Dockerfile separates apt update from install", "shortDescription": {"text": "Dockerfile separates apt update from install"}, "fullDescription": {"text": "Combine update and install in the same RUN instruction and clean package indexes in that layer."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "DKR014", "name": "Dockerfile copies broad context with incomplete .dockerignore", "shortDescription": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "fullDescription": {"text": "Tighten .dockerignore or replace COPY . with explicit COPY statements."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.76, "cwe": "", "owasp": ""}}, {"id": "DKR003", "name": "Dockerfile base image uses the latest tag", "shortDescription": {"text": "Dockerfile base image uses the latest tag"}, "fullDescription": {"text": "Pin to a maintained version tag or digest and update it deliberately through dependency automation."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.94, "cwe": "", "owasp": ""}}, {"id": "DKR017", "name": "Dockerfile installs dependencies after copying the full source tree", "shortDescription": {"text": "Dockerfile installs dependencies after copying the full source tree"}, "fullDescription": {"text": "Copy dependency manifests first, install dependencies in a cached layer, then copy the rest of the source tree."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "AGT015", "name": "Remote install command pipes network code directly to a shell", "shortDescription": {"text": "Remote install command pipes network code directly to a shell"}, "fullDescription": {"text": "Publish a package-manager install path or add checksum/signature verification before execution. For docs, show the inspect-then-run flow and pin the downloaded artifact version."}, "properties": {"scanner": "repobility-agent-runtime", "category": "dependency", "severity": "medium", "confidence": 0.7, "cwe": "", "owasp": ""}}, {"id": "SEC015", "name": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.", "shortDescription": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "fullDescription": {"text": "Use secrets module (Python) or crypto.getRandomValues() (JS) for security-sensitive randomness."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC007", "name": "[SEC007] Unsafe Deserialization: Unsafe deserialization can execute arbitrary code.", "shortDescription": {"text": "[SEC007] Unsafe Deserialization: Unsafe deserialization can execute arbitrary code."}, "fullDescription": {"text": "Use yaml.safe_load() instead of yaml.load(). Avoid pickle for untrusted data."}, "properties": {"scanner": "repobility-threat-engine", "category": "deserialization", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC123", "name": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environme", "shortDescription": {"text": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environment variables, framework internals \u2014 sometimes triggers RCE (Django debug page with arbitrary template eval)."}, "fullDescription": {"text": "Set DEBUG=False / APP_DEBUG=false in production. Provide a generic 500 handler that logs to backend but returns a sanitized page to clients."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC001", "name": "[SEC001] Hardcoded Password: Hardcoded password found in source code.", "shortDescription": {"text": "[SEC001] Hardcoded Password: Hardcoded password found in source code."}, "fullDescription": {"text": "Use environment variables or a secrets manager."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "cwe": "", "owasp": ""}}, {"id": "SEC089", "name": "[SEC089] Go: bind to all interfaces (0.0.0.0): Server binds to all network interfaces \u2014 exposes service beyond intended ", "shortDescription": {"text": "[SEC089] Go: bind to all interfaces (0.0.0.0): Server binds to all network interfaces \u2014 exposes service beyond intended scope. Ported from gosec G102 (Apache-2.0)."}, "fullDescription": {"text": "Bind to `127.0.0.1:PORT` and front with a reverse proxy."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC003", "name": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code.", "shortDescription": {"text": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code."}, "fullDescription": {"text": "Never commit secrets. Use .env files with .gitignore."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "cwe": "", "owasp": ""}}, {"id": "SEC094", "name": "[SEC094] Go: world-writable file permissions: File or directory created with world-writable mode (e.g. 0666, 0777). Port", "shortDescription": {"text": "[SEC094] Go: world-writable file permissions: File or directory created with world-writable mode (e.g. 0666, 0777). Ported from gosec G301 / G302 / G306 (Apache-2.0)."}, "fullDescription": {"text": "Use 0600 for files, 0700 for dirs that should be private."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "ERR002", "name": "[ERR002] Empty Catch Block: Empty catch blocks hide errors.", "shortDescription": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "fullDescription": {"text": "Log the error or rethrow it. Use console.error() at minimum."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC127", "name": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedEr", "shortDescription": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or "}, "fullDescription": {"text": "Either implement the body, or fail closed at module-load time so the deploy can't ship a half-built route. A CI gate that fails build on `raise NotImplementedError` in non-abstract code catches this cleanly."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC005", "name": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.", "shortDescription": {"text": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input."}, "fullDescription": {"text": "Use subprocess with shell=False and a list of args. Never eval user input."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "medium", "confidence": 0.5, "cwe": "", "owasp": ""}}, {"id": "ERR001", "name": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG ", "shortDescription": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "fullDescription": {"text": "Log the error: `except Exception: logger.debug('cleanup failed', exc_info=True)`. Or handle specific exception types."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC012", "name": "[SEC012] ZipSlip \u2014 Archive Path Traversal: Archive extraction without path validation allows writing files outside the t", "shortDescription": {"text": "[SEC012] ZipSlip \u2014 Archive Path Traversal: Archive extraction without path validation allows writing files outside the target directory."}, "fullDescription": {"text": "Validate extracted paths with os.path.realpath() and ensure they stay within the target directory."}, "properties": {"scanner": "repobility-threat-engine", "category": "path_traversal", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC119", "name": "[SEC119] World-writable / world-readable file permissions: World-writable files let any local user (or container neighbo", "shortDescription": {"text": "[SEC119] World-writable / world-readable file permissions: World-writable files let any local user (or container neighbor) tamper with data; world-readable files leak secrets."}, "fullDescription": {"text": "Use 0600 (owner rw only) for secrets, 0644 for general files, 0700 for directories with secrets. Java: `setReadable(true, true)` (owner-only)."}, "properties": {"scanner": "repobility-threat-engine", "category": "security", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `parse_clang_record_command_line_value` has cognitive complexity 17 (Sonar", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `parse_clang_record_command_line_value` has cognitive complexity 17 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boole"}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 17."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "DKR011", "name": "Dockerfile installs recommended OS packages", "shortDescription": {"text": "Dockerfile installs recommended OS packages"}, "fullDescription": {"text": "Add `--no-install-recommends` and explicitly list only packages the image needs."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "DKR010", "name": "Dockerfile leaves apt package indexes in the image layer", "shortDescription": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "fullDescription": {"text": "End the apt install layer with `rm -rf /var/lib/apt/lists/*`."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.74, "cwe": "", "owasp": ""}}, {"id": "DKR012", "name": "Dockerfile keeps pip download cache", "shortDescription": {"text": "Dockerfile keeps pip download cache"}, "fullDescription": {"text": "Use `pip install --no-cache-dir ...` in container builds."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "DKR008", "name": ".dockerignore misses sensitive defaults", "shortDescription": {"text": ".dockerignore misses sensitive defaults"}, "fullDescription": {"text": "Add missing patterns such as .env, .git, private keys, certificates, dependency folders, and local databases."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "AIC005", "name": "Duplicate top-level symbol appears in a patch-style file", "shortDescription": {"text": "Duplicate top-level symbol appears in a patch-style file"}, "fullDescription": {"text": "Keep one authoritative implementation, update imports to point at it, and remove or rename the duplicate symbol."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.64, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Extract the shared behavior into one function/module or delete the inactive duplicate after proving which path is used."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "AIC002", "name": "Source file name looks like an AI patch artifact", "shortDescription": {"text": "Source file name looks like an AI patch artifact"}, "fullDescription": {"text": "Rename it to the domain concept it implements or merge it into the existing module it was meant to change."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.62, "cwe": "", "owasp": ""}}, {"id": "SEC132", "name": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the la", "shortDescription": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on it"}, "fullDescription": {"text": "Python: `f\"prefix {var} suffix\"`. JS/TS: `` `prefix ${var} suffix` ``. Add a lint rule (pyupgrade UP032, eslint prefer-template) so future PRs catch this automatically."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC124", "name": "[SEC124] TOCTOU file access (os.access then open): Check-then-use file pattern (access/exists then open) lets an attacke", "shortDescription": {"text": "[SEC124] TOCTOU file access (os.access then open): Check-then-use file pattern (access/exists then open) lets an attacker swap the file between check and use (symlink attack). `mktemp` is deprecated for the same reason."}, "fullDescription": {"text": "Use `os.open(path, os.O_CREAT | os.O_EXCL | os.O_WRONLY)` for atomic create-only. Use `tempfile.NamedTemporaryFile()` (not `mktemp`). For locking, use `fcntl.flock`."}, "properties": {"scanner": "repobility-threat-engine", "category": "race_condition", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "ERR003", "name": "[ERR003] Ignored Error (Go): Ignoring error return values.", "shortDescription": {"text": "[ERR003] Ignored Error (Go): Ignoring error return values."}, "fullDescription": {"text": "Handle the error or use errcheck linter."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC102", "name": "[SEC102] Jackson default typing / polymorphic deserialization enabled (and 1 more): Same pattern found in 1 additional f", "shortDescription": {"text": "[SEC102] Jackson default typing / polymorphic deserialization enabled (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Disable default typing. If polymorphism is needed, use JsonTypeInfo.Id.NAME with explicit @JsonSubTypes annotations or PolymorphicTypeValidator. Never use Id.CLASS or Id.MINIMAL_CLASS."}, "properties": {"scanner": "repobility-threat-engine", "category": "deserialization", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED069", "name": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files.", "shortDescription": {"text": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-489 / A05:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED060", "name": "[MINED060] Go Context No Cancel: context.Background() at request handler boundary leaks goroutines.", "shortDescription": {"text": "[MINED060] Go Context No Cancel: context.Background() at request handler boundary leaks goroutines."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED042", "name": "[MINED042] Cpp New Without Delete (and 3 more): Same pattern found in 3 additional files. Review if needed.", "shortDescription": {"text": "[MINED042] Cpp New Without Delete (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED072", "name": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in.", "shortDescription": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED080", "name": "[MINED080] Cpp Using Namespace Std (and 6 more): Same pattern found in 6 additional files. Review if needed.", "shortDescription": {"text": "[MINED080] Cpp Using Namespace Std (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC045", "name": "[SEC045] eval()/exec() on stored or user-supplied data (and 1 more): Same pattern found in 1 additional files. Review if", "shortDescription": {"text": "[SEC045] eval()/exec() on stored or user-supplied data (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "For literal data structures: use ast.literal_eval(text) \u2014 only parses literals, raises on code.\nFor formula evaluation: use asteval or simpleeval (purpose-built sandboxes with allow-lists).\nFor Odoo: use odoo.tools.safe_eval(expr, locals_dict, mode='exec').\nIf you genuinely need to execute admin-stored code: require explicit super-admin permission AND log every execution with a stack trace."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED075", "name": "[MINED075] C Malloc No Check (and 18 more): Same pattern found in 18 additional files. Review if needed.", "shortDescription": {"text": "[MINED075] C Malloc No Check (and 18 more): Same pattern found in 18 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-690 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC024", "name": "[SEC024] XML External Entity (XXE) \u2014 Java parser default (and 1 more): Same pattern found in 1 additional files. Review ", "shortDescription": {"text": "[SEC024] XML External Entity (XXE) \u2014 Java parser default (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Disable DTDs and external entities before parsing:\n  factory.setFeature(\"http://apache.org/xml/features/disallow-doctype-decl\", true);\n  factory.setFeature(\"http://xml.org/sax/features/external-general-entities\", false);\n  factory.setFeature(\"http://xml.org/sax/features/external-parameter-entities\", false);\n  factory.setXIncludeAware(false);\nOr set FEATURE_SECURE_PROCESSING on the factory."}, "properties": {"scanner": "repobility-threat-engine", "category": "xxe", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED081", "name": "[MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr.", "shortDescription": {"text": "[MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto (and 6 more): Same pattern found in 6 additional files. Review if needed.", "shortDescription": {"text": "[MINED004] Weak Crypto (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC128", "name": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 19 more): Same pattern found in 19 add", "shortDescription": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 19 more): Same pattern found in 19 additional files. Review if needed."}, "fullDescription": {"text": "Add `await` before each async call, or chain with `.then`. If you intentionally want fire-and-forget, prefix with `void` (TS) or assign to `_` (Python with `asyncio.create_task`) to make the intent explicit and survive lint."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED022", "name": "[MINED022] C Strcpy (and 38 more): Same pattern found in 38 additional files. Review if needed.", "shortDescription": {"text": "[MINED022] C Strcpy (and 38 more): Same pattern found in 38 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-120 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https (and 142 more): Same pattern found in 142 additional files. Review if needed.", "shortDescription": {"text": "[MINED043] Http Not Https (and 142 more): Same pattern found in 142 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED044", "name": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed.", "shortDescription": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED067", "name": "[MINED067] Python Requests No Timeout (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED067] Python Requests No Timeout (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-400 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC078", "name": "[SEC078] Python: requests without timeout (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[SEC078] Python: requests without timeout (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Add `timeout=10` (or appropriate value) to every requests call."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 13 more): Same pattern found in 13 addi", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED063", "name": "[MINED063] Toctou Os Path Exists: if os.path.exists(p): open(p) \u2014 file can be replaced/deleted between check and use.", "shortDescription": {"text": "[MINED063] Toctou Os Path Exists: if os.path.exists(p): open(p) \u2014 file can be replaced/deleted between check and use."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-367 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED062", "name": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model.", "shortDescription": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED077", "name": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles.", "shortDescription": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-772 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC020", "name": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequen", "shortDescription": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "fullDescription": {"text": "Log only redacted, hashed, or last-four-style metadata. Rotate any secret that may have reached logs."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "info", "confidence": 0.1, "cwe": "", "owasp": ""}}, {"id": "SEC013", "name": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if need", "shortDescription": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Use os.path.realpath() and verify the path starts with your expected base directory. Use secure_filename() for uploads."}, "properties": {"scanner": "repobility-threat-engine", "category": "path_traversal", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED055", "name": "[MINED055] Npm Install No Lockfile (and 11 more): Same pattern found in 11 additional files. Review if needed.", "shortDescription": {"text": "[MINED055] Npm Install No Lockfile (and 11 more): Same pattern found in 11 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1357 / A06:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED001", "name": "[MINED001] Bare Except Pass (and 96 more): Same pattern found in 96 additional files. Review if needed.", "shortDescription": {"text": "[MINED001] Bare Except Pass (and 96 more): Same pattern found in 96 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED071", "name": "[MINED071] Go Panic Call (and 7 more): Same pattern found in 7 additional files. Review if needed.", "shortDescription": {"text": "[MINED071] Go Panic Call (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED016", "name": "[MINED016] Go Error Ignored (and 1 more): Same pattern found in 1 additional files. Review if needed.", "shortDescription": {"text": "[MINED016] Go Error Ignored (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-754 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED050", "name": "[MINED050] Stub Only Function (and 122 more): Same pattern found in 122 additional files. Review if needed.", "shortDescription": {"text": "[MINED050] Stub Only Function (and 122 more): Same pattern found in 122 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED033", "name": "[MINED033] Go Recover Without Log (and 4 more): Same pattern found in 4 additional files. Review if needed.", "shortDescription": {"text": "[MINED033] Go Recover Without Log (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED115", "name": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workfl", "shortDescription": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise ("}, "fullDescription": {"text": "Replace with: `uses: actions/setup-python@<40-char-sha>  # v6` and let Dependabot bump it on a scheduled cadence."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED119", "name": "[MINED119] Dockerfile `ADD https://github.com/json-c/json-c/archive/refs/tags/json-c-0.17-20230812.tar.gz`: Dockerfile `", "shortDescription": {"text": "[MINED119] Dockerfile `ADD https://github.com/json-c/json-c/archive/refs/tags/json-c-0.17-20230812.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between"}, "fullDescription": {"text": "Download the file in CI with a known checksum, vendor it into the repo, and COPY it during the build. Or use `RUN curl -sSL URL | sha256sum -c <(echo '<expected> -')` to verify."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED118", "name": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-rust (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz", "shortDescription": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-rust (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-rust (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the sam"}, "fullDescription": {"text": "Replace with: `FROM gcr.io/oss-fuzz-base/base-builder-rust (no tag)@sha256:<digest>`. Get the digest from `docker manifest inspect`. Re-pin via a scheduled bot (Renovate, Dependabot)."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED112", "name": "[MINED112] FastAPI PATCH filestore.github_actions._upload_artifact_with_upload_js has no auth: Handler `test_coverage_re", "shortDescription": {"text": "[MINED112] FastAPI PATCH filestore.github_actions._upload_artifact_with_upload_js has no auth: Handler `test_coverage_report` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears "}, "fullDescription": {"text": "Add Depends(get_current_user) or Security(...) to the handler signature. If the route is truly public, document it with a code comment so the rule knows it's intentional."}, "properties": {"scanner": "repobility-route-auth", "category": "quality", "severity": "high", "confidence": 0.8, "cwe": "", "owasp": ""}}, {"id": "MINED110", "name": "[MINED110] Blocking call `time.sleep` inside async function `run_agent_loop`: `time.sleep` is a synchronous (blocking) c", "shortDescription": {"text": "[MINED110] Blocking call `time.sleep` inside async function `run_agent_loop`: `time.sleep` is a synchronous (blocking) call. When invoked inside an `async def` it stalls the event loop, preventing every other coroutine in the process from m"}, "fullDescription": {"text": "Use the async equivalent: `aiohttp` instead of `requests`, `asyncio.sleep` instead of `time.sleep`, `aiofiles` instead of `open`."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED106", "name": "[MINED106] Phantom test coverage: test_checksum: Test function `test_checksum` runs code but contains no assert / expect", "shortDescription": {"text": "[MINED106] Phantom test coverage: test_checksum: Test function `test_checksum` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "fullDescription": {"text": "Add an explicit assertion that captures the test's intent, or remove the test."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED108", "name": "[MINED108] `self.external_project_path` used but never assigned in __init__: Method `test_init_external_project` of clas", "shortDescription": {"text": "[MINED108] `self.external_project_path` used but never assigned in __init__: Method `test_init_external_project` of class `ProjectTest` reads `self.external_project_path`, but no assignment to it exists in __init__ (and no class-level fallb"}, "fullDescription": {"text": "Initialize `self.external_project_path = <default>` in __init__, or add a class-level default."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "DKR006", "name": "Dockerfile pipes a remote script into a shell", "shortDescription": {"text": "Dockerfile pipes a remote script into a shell"}, "fullDescription": {"text": "Download the artifact, verify its checksum or signature, pin the version, and then execute it."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "high", "confidence": 0.92, "cwe": "", "owasp": ""}}, {"id": "MINED036", "name": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping.", "shortDescription": {"text": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC135", "name": "[SEC135] Auth/permission check missing on AI-generated endpoint: Mutating HTTP endpoint generated by an AI agent without", "shortDescription": {"text": "[SEC135] Auth/permission check missing on AI-generated endpoint: Mutating HTTP endpoint generated by an AI agent without an auth decorator or middleware. The number-one production-incident pattern we see in AI-generated SaaS code: the AI bu"}, "fullDescription": {"text": "Add the project's auth decorator/middleware: `@login_required` (Django/Flask), `@permission_classes([IsAuthenticated])` (DRF), `Depends(get_current_user)` (FastAPI), `requireAuth` middleware (Express). For genuinely public endpoints, add a `# public-endpoint` marker comment so future scans skip them."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC027", "name": "[SEC027] XML External Entity (XXE) \u2014 Node.js xml parsers: Node.js XML parsers can expand external entities if not config", "shortDescription": {"text": "[SEC027] XML External Entity (XXE) \u2014 Node.js xml parsers: Node.js XML parsers can expand external entities if not configured. libxmljs in particular has had XXE CVEs."}, "fullDescription": {"text": "Pass `noent: false` to libxmljs. Avoid xml2js or pass explicit secure config. Prefer parsers that don't expand external entities at all."}, "properties": {"scanner": "repobility-threat-engine", "category": "xxe", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED006", "name": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working.", "shortDescription": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-705 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED017", "name": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic.", "shortDescription": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC085", "name": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. ", "shortDescription": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "fullDescription": {"text": "Use execFile / spawn with separate args array; never pass shell strings."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED034", "name": "[MINED034] Python Subprocess Shell True: subprocess(..., shell=True) enables command injection.", "shortDescription": {"text": "[MINED034] Python Subprocess Shell True: subprocess(..., shell=True) enables command injection."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC093", "name": "[SEC093] Go: exec.Command with non-literal: exec.Command(<var>) \u2014 variable command name allows command injection. Ported", "shortDescription": {"text": "[SEC093] Go: exec.Command with non-literal: exec.Command(<var>) \u2014 variable command name allows command injection. Ported from gosec G204 (Apache-2.0)."}, "fullDescription": {"text": "Use a constant command name and validate args via a whitelist."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED012", "name": "[MINED012] Curl Pipe Bash: curl ... | sh / bash \u2014 runs unverified network code.", "shortDescription": {"text": "[MINED012] Curl Pipe Bash: curl ... | sh / bash \u2014 runs unverified network code."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-494 / A08:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED116", "name": "[MINED116] Workflow uses `secrets.PERSONAL_ACCESS_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_re", "shortDescription": {"text": "[MINED116] Workflow uses `secrets.PERSONAL_ACCESS_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.PERSONAL_ACCESS_TOKEN }` lets a PR from any fork exfil"}, "fullDescription": {"text": "Either remove the secret reference, or switch the trigger to `pull_request_target` AND ensure no fork-controlled code runs before the secret is consumed."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "critical", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED107", "name": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This ra", "shortDescription": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "fullDescription": {"text": "Add `import os` at the top of the file."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED030", "name": "[MINED030] Python Pickle Loads: pickle.loads() can execute arbitrary code via __reduce__.", "shortDescription": {"text": "[MINED030] Python Pickle Loads: pickle.loads() can execute arbitrary code via __reduce__."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-502 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC081", "name": "[SEC081] Python: pickle.loads / marshal.loads on untrusted data: pickle.load(s) and marshal.load(s) execute arbitrary co", "shortDescription": {"text": "[SEC081] Python: pickle.loads / marshal.loads on untrusted data: pickle.load(s) and marshal.load(s) execute arbitrary code on untrusted input. Ported from dlint DUO103 / DUO120 (BSD-3)."}, "fullDescription": {"text": "Use json, msgpack, or protobuf for untrusted data. If pickle is required, sign the payload with HMAC."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED018", "name": "[MINED018] Unsafe Deserialization Pickle: pickle.loads / yaml.load (without Loader=SafeLoader) / unmarshal of network/fi", "shortDescription": {"text": "[MINED018] Unsafe Deserialization Pickle: pickle.loads / yaml.load (without Loader=SafeLoader) / unmarshal of network/file data \u2014 RCE."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-502 / A08:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC116", "name": "[SEC116] Ruby YAML.load / Marshal.load on untrusted input: `YAML.load` (pre-3.1) and `Marshal.load` instantiate arbitrar", "shortDescription": {"text": "[SEC116] Ruby YAML.load / Marshal.load on untrusted input: `YAML.load` (pre-3.1) and `Marshal.load` instantiate arbitrary Ruby classes \u2014 direct RCE on untrusted input. `unsafe_load` is even more dangerous."}, "fullDescription": {"text": "Use `YAML.safe_load(input, permitted_classes: [Date])` \u2014 explicit class allowlist. Never use `Marshal.load` on untrusted data; serialize as JSON instead."}, "properties": {"scanner": "repobility-threat-engine", "category": "deserialization", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC079", "name": "[SEC079] Python: yaml.load without SafeLoader: yaml.load() without explicit SafeLoader can execute arbitrary Python obje", "shortDescription": {"text": "[SEC079] Python: yaml.load without SafeLoader: yaml.load() without explicit SafeLoader can execute arbitrary Python objects (CVE-2017-18342). Ported from bandit B506 / dlint DUO109 (Apache-2.0 / BSD-3)."}, "fullDescription": {"text": "Use `yaml.safe_load(data)` or `yaml.load(data, Loader=yaml.SafeLoader)`."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC101", "name": "[SEC101] Unsafe Java object deserialization (ObjectInputStream): Java ObjectInputStream deserializes untrusted bytes int", "shortDescription": {"text": "[SEC101] Unsafe Java object deserialization (ObjectInputStream): Java ObjectInputStream deserializes untrusted bytes into objects. Attacker-controlled streams trigger gadget chains (Apache Commons Collections, etc.) leading to RCE."}, "fullDescription": {"text": "Avoid native Java serialization entirely. Use JSON (Jackson with default-typing OFF) or a length-limited Protobuf. If you must, set up a SerialKiller / lookahead-deserializer with a class allowlist."}, "properties": {"scanner": "repobility-threat-engine", "category": "deserialization", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED007", "name": "[MINED007] Sql String Concat: cursor.execute(f\"... {user_input} ...\") \u2014 SQL injection.", "shortDescription": {"text": "[MINED007] Sql String Concat: cursor.execute(f\"... {user_input} ...\") \u2014 SQL injection."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-89 / A03:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/1036"}, "properties": {"repository": "google/oss-fuzz", "repoUrl": "https://github.com/google/oss-fuzz", "branch": "master"}, "results": [{"ruleId": "MINED124", "level": "warning", "message": {"text": "[MINED124] requirements.txt: `logfire` has no version pin: Unpinned pip requirement means every fresh install may resolve a different version. Newer releases can introduce malicious code (typosquats, account compromises). Reproducible installs need exact pins."}, "properties": {"repobilityId": 101464, "scanner": "repobility-supply-chain", "fingerprint": "8d048fff53134298e17fc0fc9bee2c469b219c8d8db26fee4ec1ad23c9a1014a", "category": "dependency", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "unpinned-pip-requirement", "owasp": null, "cwe_ids": ["CWE-1357"], "languages": ["python"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|8d048fff53134298e17fc0fc9bee2c469b219c8d8db26fee4ec1ad23c9a1014a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/mcp/requirements.txt"}, "region": {"startLine": 3}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101367, "scanner": "repobility-ast-engine", "fingerprint": "905e5b3eb9c6c49816adf907c113bbfc227a36fddab5aa69d33d57a36cf396c9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|905e5b3eb9c6c49816adf907c113bbfc227a36fddab5aa69d33d57a36cf396c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pypdf/fuzz_encryption.py"}, "region": {"startLine": 54}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101366, "scanner": "repobility-ast-engine", "fingerprint": "3d56c6b7f45685479f8503212c8885eac3e3b4491f6993afeb158b83adba9455", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3d56c6b7f45685479f8503212c8885eac3e3b4491f6993afeb158b83adba9455"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/decorator/fuzz_funcmarker.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101365, "scanner": "repobility-ast-engine", "fingerprint": "99e680d4f6158ca2ae5bae3b86cc21216e6bc4e695e642bfd60dea6fb2e30fbc", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|99e680d4f6158ca2ae5bae3b86cc21216e6bc4e695e642bfd60dea6fb2e30fbc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/fuzz_reqparse.py"}, "region": {"startLine": 42}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101364, "scanner": "repobility-ast-engine", "fingerprint": "fcb527d36a16d4fa3efa51630623196c5cac5773ead726e901493bb15d05a596", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fcb527d36a16d4fa3efa51630623196c5cac5773ead726e901493bb15d05a596"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/fuzz_reqparse.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101363, "scanner": "repobility-ast-engine", "fingerprint": "acd0f5a38f416d93c04c6a09153c630d226f75461660d3a666e888b42e1707ec", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|acd0f5a38f416d93c04c6a09153c630d226f75461660d3a666e888b42e1707ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ijson/fuzz_all.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101362, "scanner": "repobility-ast-engine", "fingerprint": "a0756622f8d799224b54f9c54d130b8566e1064e0a25046ba6a3e62de2e713c6", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a0756622f8d799224b54f9c54d130b8566e1064e0a25046ba6a3e62de2e713c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asttokens/fuzz_asttokens.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101361, "scanner": "repobility-ast-engine", "fingerprint": "715c16b5cde4664495d485d0b246169c4652167eb32b01ef735cd73c9516a980", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|715c16b5cde4664495d485d0b246169c4652167eb32b01ef735cd73c9516a980"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/fuzz_web_request.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101359, "scanner": "repobility-ast-engine", "fingerprint": "3f97e1979d29957857d0cbaa8b2a822b52fcbe1ab8d17bcd087dde505c929738", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3f97e1979d29957857d0cbaa8b2a822b52fcbe1ab8d17bcd087dde505c929738"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytz/fuzz_pytz.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101357, "scanner": "repobility-ast-engine", "fingerprint": "6d6383686ce21dd717ef359b4362d98853a795b88a2080014c1cb13141333201", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6d6383686ce21dd717ef359b4362d98853a795b88a2080014c1cb13141333201"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/fuzz_jwt.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101354, "scanner": "repobility-ast-engine", "fingerprint": "0fd10c60204d91c231bd0e52cd12e0fab4aeaca0e88668d358268f29e086ac10", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0fd10c60204d91c231bd0e52cd12e0fab4aeaca0e88668d358268f29e086ac10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1-modules/fuzz_decode.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101350, "scanner": "repobility-ast-engine", "fingerprint": "24e24ceda63d4ff116304e6b2f0062be625f5b1e8a132564e56ad37a3f609130", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|24e24ceda63d4ff116304e6b2f0062be625f5b1e8a132564e56ad37a3f609130"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zipp/fuzz_zipp.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101348, "scanner": "repobility-ast-engine", "fingerprint": "88d873df09dbe2a686667f77895474083f64a1cfd58a9f8e23ff888427ebb71f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|88d873df09dbe2a686667f77895474083f64a1cfd58a9f8e23ff888427ebb71f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/fuzz_env_jinja_lexer.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101346, "scanner": "repobility-ast-engine", "fingerprint": "06c3ff463cd97e027014a06d20bd139653be05a39cdb2ade0f1981b7cb259118", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|06c3ff463cd97e027014a06d20bd139653be05a39cdb2ade0f1981b7cb259118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyparsing/fuzz_parse.py"}, "region": {"startLine": 61}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101345, "scanner": "repobility-ast-engine", "fingerprint": "2f617cc7c4ad26ac0045ae06c833bc21274f1cc89351bbf047287b0d4dd47d41", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2f617cc7c4ad26ac0045ae06c833bc21274f1cc89351bbf047287b0d4dd47d41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ujson/json_differential_fuzzer.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101344, "scanner": "repobility-ast-engine", "fingerprint": "3a8d0296a7b122503fdfc30b1296b903c8bb7f2083c7a675b31f4aefad94a0e4", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3a8d0296a7b122503fdfc30b1296b903c8bb7f2083c7a675b31f4aefad94a0e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/looker-sdk/fuzz_looker.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101343, "scanner": "repobility-ast-engine", "fingerprint": "37f305f10ad04612bbff2209cb60944166e9d1f68e24ebea7d723ad651ecd5ab", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|37f305f10ad04612bbff2209cb60944166e9d1f68e24ebea7d723ad651ecd5ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyyaml/fuzz_loader.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101342, "scanner": "repobility-ast-engine", "fingerprint": "a64bf0b11d5c39501b71a350644d770a29feedc5c611bdd387b7bc2ef8f9bde7", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a64bf0b11d5c39501b71a350644d770a29feedc5c611bdd387b7bc2ef8f9bde7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/fuzz_md.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101341, "scanner": "repobility-ast-engine", "fingerprint": "be93d35c6c0dc371bfc9a3b155cde74503f40a465424f5f07de8c7c547ce0a86", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|be93d35c6c0dc371bfc9a3b155cde74503f40a465424f5f07de8c7c547ce0a86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stack_data/fuzz_source.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101340, "scanner": "repobility-ast-engine", "fingerprint": "ef05f3f6cbae283df1f7c0f150d8afa29137891e392eb8119980e49dd37c012d", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ef05f3f6cbae283df1f7c0f150d8afa29137891e392eb8119980e49dd37c012d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/six/fuzz_six.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101339, "scanner": "repobility-ast-engine", "fingerprint": "a9eb1af5d875facfdddb7b5b1f3c3e1189771744b269bc0fdd5006d7a34e0005", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a9eb1af5d875facfdddb7b5b1f3c3e1189771744b269bc0fdd5006d7a34e0005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-bigquery-storage/fuzz_avroparser.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101338, "scanner": "repobility-ast-engine", "fingerprint": "4575eea3c98617edc53302aa7ef56924e516c93700f9a10f8da441ad85b78973", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4575eea3c98617edc53302aa7ef56924e516c93700f9a10f8da441ad85b78973"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/cors_fuzz_flask.py"}, "region": {"startLine": 78}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101336, "scanner": "repobility-ast-engine", "fingerprint": "5b91ad49d08b52887d34b6361277d49e1e87406d13dfc79a5c63684b2bd01c52", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5b91ad49d08b52887d34b6361277d49e1e87406d13dfc79a5c63684b2bd01c52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-fastjsonschema/fuzz_compile.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101328, "scanner": "repobility-ast-engine", "fingerprint": "f80d1a403f21ffe10a68ee97bd2c60f54cb359ae18d92fe4fae28a7cbec658a9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f80d1a403f21ffe10a68ee97bd2c60f54cb359ae18d92fe4fae28a7cbec658a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/pr_helper.py"}, "region": {"startLine": 54}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101327, "scanner": "repobility-ast-engine", "fingerprint": "d649747f246fe3d3a962b4dec5f7476c155235b6767a41edc0ad5890c0949e89", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d649747f246fe3d3a962b4dec5f7476c155235b6767a41edc0ad5890c0949e89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/retry.py"}, "region": {"startLine": 98}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 101326, "scanner": "repobility-ast-engine", "fingerprint": "01f1024134482f97d858b2d556f6f571df41a2b311c6cc6f17b3f5bd06dc85ab", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|01f1024134482f97d858b2d556f6f571df41a2b311c6cc6f17b3f5bd06dc85ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/retry.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "WEB003", "level": "warning", "message": {"text": "Public web service has no security.txt"}, "properties": {"repobilityId": 101297, "scanner": "repobility-web-presence", "fingerprint": "5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository looks like a public web app/API but no security.txt file or route was discovered.", "evidence": {"rule_id": "WEB003", "scanner": "repobility-web-presence", "references": ["https://www.rfc-editor.org/rfc/rfc9116", "https://github.com/Lissy93/web-check"], "correlation_key": "fp|5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".well-known/security.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101296, "scanner": "repobility-docker", "fingerprint": "35b845f42f2d4e5bdfdc27be33733ce305c4e8acda3112c325d6f7cf0d81d622", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35b845f42f2d4e5bdfdc27be33733ce305c4e8acda3112c325d6f7cf0d81d622"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zydis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 101295, "scanner": "repobility-docker", "fingerprint": "6ab092cc7d43735d3c66c65b8609725738c4837f66e6641667c1d1187828d1a9", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ab092cc7d43735d3c66c65b8609725738c4837f66e6641667c1d1187828d1a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zydis/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 101294, "scanner": "repobility-docker", "fingerprint": "c3f6e3059dc0ff04ee6b7fa09ae66d7181df69bbf6be0cfd6e764d80dc51f74d", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c3f6e3059dc0ff04ee6b7fa09ae66d7181df69bbf6be0cfd6e764d80dc51f74d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zydis/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 101293, "scanner": "repobility-docker", "fingerprint": "99839369283e5ac365b88582d55efcc1480870d120035355cb0ed2fecc4eedd3", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99839369283e5ac365b88582d55efcc1480870d120035355cb0ed2fecc4eedd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zydis/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101292, "scanner": "repobility-docker", "fingerprint": "c79d72b0b1fd3ed38d897b080ebbbd2f173b29541a29fe83a4a762f2a43f89c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c79d72b0b1fd3ed38d897b080ebbbd2f173b29541a29fe83a4a762f2a43f89c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zydis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101291, "scanner": "repobility-docker", "fingerprint": "b5b8190a38acacfa29c5ca12181cd79edc6c93f71b002a699b766a1985077c3d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b5b8190a38acacfa29c5ca12181cd79edc6c93f71b002a699b766a1985077c3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zxing/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101290, "scanner": "repobility-docker", "fingerprint": "6635526d92698677adec712d942d4334ab2c5bbdc60a0bff43be78818d0b64f1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6635526d92698677adec712d942d4334ab2c5bbdc60a0bff43be78818d0b64f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zxing/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101289, "scanner": "repobility-docker", "fingerprint": "fbcce0dde0f595aac579c64122126f66174e795406e32db4cbad099bd1948121", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbcce0dde0f595aac579c64122126f66174e795406e32db4cbad099bd1948121"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zt-zip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101286, "scanner": "repobility-docker", "fingerprint": "3fed0999c581722c2184b1f07e7a360bc56f40a477bd9a1d4fc7d39b902a7780", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fed0999c581722c2184b1f07e7a360bc56f40a477bd9a1d4fc7d39b902a7780"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zt-zip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101285, "scanner": "repobility-docker", "fingerprint": "99bf47f1c125b579a3cde715f64e3c7afb48ccb9ede456f330eb0f1e7b044998", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99bf47f1c125b579a3cde715f64e3c7afb48ccb9ede456f330eb0f1e7b044998"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd-safe/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101284, "scanner": "repobility-docker", "fingerprint": "9e2cfd68ac2d421047321307a890374aca938d9ac0120734afb24eedc8a74263", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e2cfd68ac2d421047321307a890374aca938d9ac0120734afb24eedc8a74263"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd-safe/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101283, "scanner": "repobility-docker", "fingerprint": "09d037f3be462f18b2428d8cd964dddc82e1788319c6aaf981b351eae718f8d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09d037f3be462f18b2428d8cd964dddc82e1788319c6aaf981b351eae718f8d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101280, "scanner": "repobility-docker", "fingerprint": "dbd86e0ca6564f1a47cae7ecab4810aa869c781f669d73c6eebcb97560b5b312", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dbd86e0ca6564f1a47cae7ecab4810aa869c781f669d73c6eebcb97560b5b312"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101279, "scanner": "repobility-docker", "fingerprint": "9996d57b0474c155ea27ac4994dfa79620d6cffd18db1a1e1a82bbb8cfeaa305", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9996d57b0474c155ea27ac4994dfa79620d6cffd18db1a1e1a82bbb8cfeaa305"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zopfli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101276, "scanner": "repobility-docker", "fingerprint": "61c48b3994237248945138667527b1da4e2bac927842b8980b536bebea95d32e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|61c48b3994237248945138667527b1da4e2bac927842b8980b536bebea95d32e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zopfli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101275, "scanner": "repobility-docker", "fingerprint": "8de1a46580c4bd801d27f16ac883b9ec6544937147666b738943b88809562b60", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8de1a46580c4bd801d27f16ac883b9ec6544937147666b738943b88809562b60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zookeeper/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101272, "scanner": "repobility-docker", "fingerprint": "16966fe2cc1672ffbe5fe4a3c2002a86ac64640003ee98549ba768790a484dca", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16966fe2cc1672ffbe5fe4a3c2002a86ac64640003ee98549ba768790a484dca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zookeeper/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101271, "scanner": "repobility-docker", "fingerprint": "0657b674795838b534787ea6938859c58aad56d7ebbba6b39c828d3f4fd3cbc1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0657b674795838b534787ea6938859c58aad56d7ebbba6b39c828d3f4fd3cbc1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/znc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101268, "scanner": "repobility-docker", "fingerprint": "2d20f711ba52a95d74cf593b34e7850e94bf37f592a5005e6286ebb219d0f22a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d20f711ba52a95d74cf593b34e7850e94bf37f592a5005e6286ebb219d0f22a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/znc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101267, "scanner": "repobility-docker", "fingerprint": "3a9785df380dfa597ddb0a73e901e34b045a6d273a993ff40cb3abd79f3d3510", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a9785df380dfa597ddb0a73e901e34b045a6d273a993ff40cb3abd79f3d3510"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib-ng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101264, "scanner": "repobility-docker", "fingerprint": "ca6b8b1c14d7d5a53de88c5fac5cd9f29e5d1e62f1636c0dbe50f7061126f38c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca6b8b1c14d7d5a53de88c5fac5cd9f29e5d1e62f1636c0dbe50f7061126f38c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib-ng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101263, "scanner": "repobility-docker", "fingerprint": "219a236488e5da21e71fde373d0651b442901894de1fc176e527f58fc2b9835c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|219a236488e5da21e71fde373d0651b442901894de1fc176e527f58fc2b9835c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101260, "scanner": "repobility-docker", "fingerprint": "9c2d35d9761854e6cbef8b8a45c752b080d64e52406c2b28e90f5b3d10fe4378", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c2d35d9761854e6cbef8b8a45c752b080d64e52406c2b28e90f5b3d10fe4378"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zipp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101257, "scanner": "repobility-docker", "fingerprint": "fcac56826e50e977bd349903091e8e90fe82dd876feea3390ca21440ed12b2e9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fcac56826e50e977bd349903091e8e90fe82dd876feea3390ca21440ed12b2e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zipp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101256, "scanner": "repobility-docker", "fingerprint": "065b972c3709584d97f7d9290380e2a53812c5c581a458583546855f826373d3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|065b972c3709584d97f7d9290380e2a53812c5c581a458583546855f826373d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101255, "scanner": "repobility-docker", "fingerprint": "55f1b15bd314e0a21876fc22309fec3f35f60fa4a4266e2933a89f8258dceb4f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55f1b15bd314e0a21876fc22309fec3f35f60fa4a4266e2933a89f8258dceb4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101254, "scanner": "repobility-docker", "fingerprint": "22a47cb6620e208d43e0abefa8c5669dba2d8bde49e4219bdc5505eeb89f9f4c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22a47cb6620e208d43e0abefa8c5669dba2d8bde49e4219bdc5505eeb89f9f4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101253, "scanner": "repobility-docker", "fingerprint": "f8f514710e09f58ac97932d8d16dbeb9acebedeabca1be872c34d8e98d34e21b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f8f514710e09f58ac97932d8d16dbeb9acebedeabca1be872c34d8e98d34e21b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101252, "scanner": "repobility-docker", "fingerprint": "169c9990fe02b9a02236ae7f1ad8b904cb72f1906aef8567d6b5a248699bbb91", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|169c9990fe02b9a02236ae7f1ad8b904cb72f1906aef8567d6b5a248699bbb91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101249, "scanner": "repobility-docker", "fingerprint": "5f5359cd11623e65a1311486a6c54b2b666cce56dd8bc96662c4b3d9aece0545", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f5359cd11623e65a1311486a6c54b2b666cce56dd8bc96662c4b3d9aece0545"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101248, "scanner": "repobility-docker", "fingerprint": "2efcdfb59f11a85f6ba1ec6274487b9e5813dbd54fb9b73bc6aa65fb3c3d2e22", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2efcdfb59f11a85f6ba1ec6274487b9e5813dbd54fb9b73bc6aa65fb3c3d2e22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zeek/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101247, "scanner": "repobility-docker", "fingerprint": "7248665808afceef08208bb008e0dca9edeb9a350e9775a838e8fc92e9a208b8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7248665808afceef08208bb008e0dca9edeb9a350e9775a838e8fc92e9a208b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yyjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101244, "scanner": "repobility-docker", "fingerprint": "6214d7f0cd4f6fac35067d8d26d4791bd2347f72b439fc867a7bfa589aa17f67", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6214d7f0cd4f6fac35067d8d26d4791bd2347f72b439fc867a7bfa589aa17f67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yyjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101243, "scanner": "repobility-docker", "fingerprint": "9afcec44c13f044c5621e7b4920eb842cd1f492c643ef73bc9375e32353f4fd0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9afcec44c13f044c5621e7b4920eb842cd1f492c643ef73bc9375e32353f4fd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yoga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101240, "scanner": "repobility-docker", "fingerprint": "613a8313e204d7679b8689a06807a33a68afcf486c36141d99e7e5e41b903d72", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|613a8313e204d7679b8689a06807a33a68afcf486c36141d99e7e5e41b903d72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yoga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101239, "scanner": "repobility-docker", "fingerprint": "2e61de24de335615593a40932a985387666bcfa7a744b1a43bc8df44de191ba3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e61de24de335615593a40932a985387666bcfa7a744b1a43bc8df44de191ba3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ygot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101238, "scanner": "repobility-docker", "fingerprint": "a9fb20ede21fcd7020ed2713e4c163c90a48a3b1149f0b72cad91a5ebd649477", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a9fb20ede21fcd7020ed2713e4c163c90a48a3b1149f0b72cad91a5ebd649477"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ygot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101237, "scanner": "repobility-docker", "fingerprint": "86c132880b68e7a8fb3e6898386edd642a262b033cf09982fd9f9246ef1c0652", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|86c132880b68e7a8fb3e6898386edd642a262b033cf09982fd9f9246ef1c0652"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yarl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101236, "scanner": "repobility-docker", "fingerprint": "48e20a11f35f96f87fe5e7101316736f4cedae3790b9151220396103646aab38", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48e20a11f35f96f87fe5e7101316736f4cedae3790b9151220396103646aab38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yarl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101235, "scanner": "repobility-docker", "fingerprint": "52271c0639ac01605da0881e1b7ecc851370baca4a87474ccc9756aaa30e6c5d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52271c0639ac01605da0881e1b7ecc851370baca4a87474ccc9756aaa30e6c5d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yara/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101232, "scanner": "repobility-docker", "fingerprint": "eb2ad40a3161089e610e976de00092d7ccfb644cace67ca884798be05e44ded2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb2ad40a3161089e610e976de00092d7ccfb644cace67ca884798be05e44ded2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yara/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101231, "scanner": "repobility-docker", "fingerprint": "275edac5c8a81400940bd3045597efb1af0072c48644eddfc79e9a3c6731b61b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|275edac5c8a81400940bd3045597efb1af0072c48644eddfc79e9a3c6731b61b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yamlbeans/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101228, "scanner": "repobility-docker", "fingerprint": "ad25f1539ae1d678b2064ebc77812c92362e8c433f16a7452851dda8b713c6a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad25f1539ae1d678b2064ebc77812c92362e8c433f16a7452851dda8b713c6a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yamlbeans/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101227, "scanner": "repobility-docker", "fingerprint": "268d60a83a051a31add0c0afd2d3b00126a23ba5ac6dbbccdb2f947e5fa5fcbc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|268d60a83a051a31add0c0afd2d3b00126a23ba5ac6dbbccdb2f947e5fa5fcbc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yaml-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101224, "scanner": "repobility-docker", "fingerprint": "f1fa75c73bf87dde25b904c20bca03e5d9909368bd370a1f485e7564b275c3b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1fa75c73bf87dde25b904c20bca03e5d9909368bd370a1f485e7564b275c3b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yaml-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101223, "scanner": "repobility-docker", "fingerprint": "f379c16eec1bad1b8cd28eeef0170791840bfd6d5570d1498246e9ebc8eae488", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f379c16eec1bad1b8cd28eeef0170791840bfd6d5570d1498246e9ebc8eae488"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yajl-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101222, "scanner": "repobility-docker", "fingerprint": "5b86e244bf0aecb3fc35bd8f01beaa8aad41b42d37784706fd98194aef0c2a9c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5b86e244bf0aecb3fc35bd8f01beaa8aad41b42d37784706fd98194aef0c2a9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yajl-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101221, "scanner": "repobility-docker", "fingerprint": "ad1268b7e068eb1ebffe6d7530a7cfc0a57695b673e875f42899631aacc1447c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad1268b7e068eb1ebffe6d7530a7cfc0a57695b673e875f42899631aacc1447c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101218, "scanner": "repobility-docker", "fingerprint": "8ff242857bc8714efc42c13de9d75ba079c4cbe21ba15f8e05a48815cdd051d9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ff242857bc8714efc42c13de9d75ba079c4cbe21ba15f8e05a48815cdd051d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101217, "scanner": "repobility-docker", "fingerprint": "fc2737253e6798ff1cff7359a03ba27876c9dcdaa75e90e1f7d92f74e5a42da8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc2737253e6798ff1cff7359a03ba27876c9dcdaa75e90e1f7d92f74e5a42da8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101214, "scanner": "repobility-docker", "fingerprint": "94e34c47e8725fc2792d4af3614abf12210b49124f2df52994bb337784477c97", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|94e34c47e8725fc2792d4af3614abf12210b49124f2df52994bb337784477c97"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101213, "scanner": "repobility-docker", "fingerprint": "971dc848fdf669989150331a5b1fa93785b4a5d45b6b11e5e8f3e6a8306068cc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|971dc848fdf669989150331a5b1fa93785b4a5d45b6b11e5e8f3e6a8306068cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xvid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101210, "scanner": "repobility-docker", "fingerprint": "004098b21f62b59761e4a814334c29c12913999ab565110f927fb61a8451ed08", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|004098b21f62b59761e4a814334c29c12913999ab565110f927fb61a8451ed08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xvid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101209, "scanner": "repobility-docker", "fingerprint": "4a3b522bf00100314a0908c7c044419c75da5d4f39b168d8f2ae73c90a81671b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a3b522bf00100314a0908c7c044419c75da5d4f39b168d8f2ae73c90a81671b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xstream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101208, "scanner": "repobility-docker", "fingerprint": "56718fb2a5fd3403b70fbd0d1728ec746ae0a8967dca077dfb6223ea19894316", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|56718fb2a5fd3403b70fbd0d1728ec746ae0a8967dca077dfb6223ea19894316"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xstream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101207, "scanner": "repobility-docker", "fingerprint": "b5663ef1139fea0a408172f3357b552958b18f34c080c81b2f312c4aa950d07a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b5663ef1139fea0a408172f3357b552958b18f34c080c81b2f312c4aa950d07a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101204, "scanner": "repobility-docker", "fingerprint": "c54d236b0bc3c185f48badf975e0f8c683e88bd86e76940ebef58f057cc0b673", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c54d236b0bc3c185f48badf975e0f8c683e88bd86e76940ebef58f057cc0b673"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101203, "scanner": "repobility-docker", "fingerprint": "076148c63dc6c5f79175196385a601e9d16e088cb0920dec7c35303b9f66a5f3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|076148c63dc6c5f79175196385a601e9d16e088cb0920dec7c35303b9f66a5f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xpdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 101202, "scanner": "repobility-docker", "fingerprint": "b74a360a12b7fcbab7deae87d73b50abf088829ac249c177510c206ae9f1a4df", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b74a360a12b7fcbab7deae87d73b50abf088829ac249c177510c206ae9f1a4df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xpdf/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101201, "scanner": "repobility-docker", "fingerprint": "7b9c21e0e05ec0549c996228d848eda92a239fa138751885807d84438a6c494b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b9c21e0e05ec0549c996228d848eda92a239fa138751885807d84438a6c494b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xpdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101200, "scanner": "repobility-docker", "fingerprint": "a8e0c1b0e202c37d2f16f574ead5e5fdae3855dfe88e420331b476dde44bd537", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8e0c1b0e202c37d2f16f574ead5e5fdae3855dfe88e420331b476dde44bd537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101197, "scanner": "repobility-docker", "fingerprint": "7f694b04c114f7f1e38a5137d2c41124070e50924234b64c972ec88b3c5a45cb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f694b04c114f7f1e38a5137d2c41124070e50924234b64c972ec88b3c5a45cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101196, "scanner": "repobility-docker", "fingerprint": "f9abbda8ca6519aa2ba23a3c489792eaedcd17ed07917c7b3cba0866091cadf6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f9abbda8ca6519aa2ba23a3c489792eaedcd17ed07917c7b3cba0866091cadf6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnnpack/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101193, "scanner": "repobility-docker", "fingerprint": "d54279533dc4d510ee4c22a95485dfc43a7477428c6f30a8a072d72ac3d80daa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d54279533dc4d510ee4c22a95485dfc43a7477428c6f30a8a072d72ac3d80daa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnnpack/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101192, "scanner": "repobility-docker", "fingerprint": "d6942fa6219af9821ee982bdfaa17387c5c24cfd9ce0ea3aa6b2143f52f66dc9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6942fa6219af9821ee982bdfaa17387c5c24cfd9ce0ea3aa6b2143f52f66dc9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnio-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101190, "scanner": "repobility-docker", "fingerprint": "96dfcf9b33aaebb35ae437330f7f8a2d871a5a51ad9a04158489da04d4dec6c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96dfcf9b33aaebb35ae437330f7f8a2d871a5a51ad9a04158489da04d4dec6c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnio-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101189, "scanner": "repobility-docker", "fingerprint": "ec9070b39ed0ff910f5be2a1795caff722c7924d240162f257cc7e751211487f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ec9070b39ed0ff910f5be2a1795caff722c7924d240162f257cc7e751211487f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlunit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101186, "scanner": "repobility-docker", "fingerprint": "23f99ab832565ea62df7f93231e6a47e8841244220094b515b9ab6682e844c2e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|23f99ab832565ea62df7f93231e6a47e8841244220094b515b9ab6682e844c2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlunit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101185, "scanner": "repobility-docker", "fingerprint": "22680a18463e9cf5a7cb435def1e4fbee209320db2a74b54f711ba6cb3c92d3a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22680a18463e9cf5a7cb435def1e4fbee209320db2a74b54f711ba6cb3c92d3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmltodict/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101184, "scanner": "repobility-docker", "fingerprint": "7ae7e4478c3279dc0a7a4687994ef7f755f749651c7bb456a1e675b4c620e975", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ae7e4478c3279dc0a7a4687994ef7f755f749651c7bb456a1e675b4c620e975"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmltodict/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101183, "scanner": "repobility-docker", "fingerprint": "d923fcd16a3e355b39c9b91dfd441b90182f716b6714738e675574039e06e866", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d923fcd16a3e355b39c9b91dfd441b90182f716b6714738e675574039e06e866"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlsec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101179, "scanner": "repobility-docker", "fingerprint": "6eceaabfd0a9c9d4c0ff433ee2cffd2a309a740f1694ec8f355678466e423ec4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6eceaabfd0a9c9d4c0ff433ee2cffd2a309a740f1694ec8f355678466e423ec4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlpull/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101178, "scanner": "repobility-docker", "fingerprint": "bea26215612edfc701880cb6b982774b330d0154368ccf52f995a7a0550317c5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bea26215612edfc701880cb6b982774b330d0154368ccf52f995a7a0550317c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlpull/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101177, "scanner": "repobility-docker", "fingerprint": "376fc5f1059078dd98bfa334cce7e1341a0bea8fef0b9b1b04e9f238a5643f7c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|376fc5f1059078dd98bfa334cce7e1341a0bea8fef0b9b1b04e9f238a5643f7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmldom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101176, "scanner": "repobility-docker", "fingerprint": "51fd0842bb309b69d653034d692862865bf6ac0cfb2046b3608852fe4fe2eb04", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51fd0842bb309b69d653034d692862865bf6ac0cfb2046b3608852fe4fe2eb04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmldom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101175, "scanner": "repobility-docker", "fingerprint": "3b77083053cea86ed25a226d5764344e33f19ac8400e28b498df3dc38066af00", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b77083053cea86ed25a226d5764344e33f19ac8400e28b498df3dc38066af00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlbeans/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101172, "scanner": "repobility-docker", "fingerprint": "b5697207f8b845caa2fb4ab4a9b9b65addda9648b167bbebab50af2787e196f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b5697207f8b845caa2fb4ab4a9b9b65addda9648b167bbebab50af2787e196f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlbeans/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101171, "scanner": "repobility-docker", "fingerprint": "07a3a6b2a0c26a3caeb5f04e9dde39accbdbbf693b1b6064f3964585be524089", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07a3a6b2a0c26a3caeb5f04e9dde39accbdbbf693b1b6064f3964585be524089"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xlsxwriter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101170, "scanner": "repobility-docker", "fingerprint": "ff883f8e9c13229eb91fe48c8aa89bcfbb99f5e06db10f33a31d6df3a7e9257f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff883f8e9c13229eb91fe48c8aa89bcfbb99f5e06db10f33a31d6df3a7e9257f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xlsxwriter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101169, "scanner": "repobility-docker", "fingerprint": "a6801810fc2c043aa67a9c694e0e503ef9ab3116f6c2aeed7c79cd34e121bfb3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6801810fc2c043aa67a9c694e0e503ef9ab3116f6c2aeed7c79cd34e121bfb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xlrd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101168, "scanner": "repobility-docker", "fingerprint": "359145f155bded3f90944617443bdc2ebe01fb749db2a24be4d5e279314eea8d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|359145f155bded3f90944617443bdc2ebe01fb749db2a24be4d5e279314eea8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xlrd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101167, "scanner": "repobility-docker", "fingerprint": "56e1150cdc052423419fc063f84d3e97e138a0cca25595c65106f624c678c4ac", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|56e1150cdc052423419fc063f84d3e97e138a0cca25595c65106f624c678c4ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces-c/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101164, "scanner": "repobility-docker", "fingerprint": "75458e3b3d5e05de7898924770d9dff6617fca5c575e04b94a9c68407595174c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75458e3b3d5e05de7898924770d9dff6617fca5c575e04b94a9c68407595174c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces-c/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101163, "scanner": "repobility-docker", "fingerprint": "ea04feb43f184378c66685484fc5b8b379f498c1425bf7330b923dc28fb9f08c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea04feb43f184378c66685484fc5b8b379f498c1425bf7330b923dc28fb9f08c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101160, "scanner": "repobility-docker", "fingerprint": "37b8fd8e665f75d0a88b9804e1a5fc6078a7912646f68158ed790ca224fe7331", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37b8fd8e665f75d0a88b9804e1a5fc6078a7912646f68158ed790ca224fe7331"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101159, "scanner": "repobility-docker", "fingerprint": "78b38be0e3b2b7eaf415cd93fd31ca1be3588ba860dbd9eb35351bb495fee798", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78b38be0e3b2b7eaf415cd93fd31ca1be3588ba860dbd9eb35351bb495fee798"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 101158, "scanner": "repobility-docker", "fingerprint": "c651564fb6eaf12adbb4997c258a03fe9f63bcacd10865cc345e95316f2fb447", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c651564fb6eaf12adbb4997c258a03fe9f63bcacd10865cc345e95316f2fb447"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xen/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101157, "scanner": "repobility-docker", "fingerprint": "759245a2df0c2349e23814ac78e5de3e64d4b0b7e5fc7ea1acbe82622692383f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|759245a2df0c2349e23814ac78e5de3e64d4b0b7e5fc7ea1acbe82622692383f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101156, "scanner": "repobility-docker", "fingerprint": "d2ca6d92048d34e7da43d6c633ec3e2f5bfb3734ebfa73b41a6db4b7ab6327ed", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2ca6d92048d34e7da43d6c633ec3e2f5bfb3734ebfa73b41a6db4b7ab6327ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wxwidgets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101153, "scanner": "repobility-docker", "fingerprint": "ebcfdaacdc117015338797275223219018cec4233ebc65e9a296408b62cc7408", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ebcfdaacdc117015338797275223219018cec4233ebc65e9a296408b62cc7408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wxwidgets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101152, "scanner": "repobility-docker", "fingerprint": "c2b273b10b622bffbca5ce89ceb8809c89fbd1027bc289035cd41682c89de391", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2b273b10b622bffbca5ce89ceb8809c89fbd1027bc289035cd41682c89de391"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wuffs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101149, "scanner": "repobility-docker", "fingerprint": "cb4c2f186789ab14db76bd56d244930a9b635f494de261001e6578c01fb0cbe5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb4c2f186789ab14db76bd56d244930a9b635f494de261001e6578c01fb0cbe5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wuffs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101148, "scanner": "repobility-docker", "fingerprint": "7a0ce0209433f9ccbbe593bc00660853c38c562e4a1c4d3ea925bf611b88844e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a0ce0209433f9ccbbe593bc00660853c38c562e4a1c4d3ea925bf611b88844e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wtforms/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101147, "scanner": "repobility-docker", "fingerprint": "1b530e16fbb44f14f381eb5a4b32d43ad47405912e1c82e62f1d53b61b987ab4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b530e16fbb44f14f381eb5a4b32d43ad47405912e1c82e62f1d53b61b987ab4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wtforms/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101146, "scanner": "repobility-docker", "fingerprint": "a425027eea033c86ee86471fd3637b348bf585b50a2e74b8033adc75db609a57", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a425027eea033c86ee86471fd3637b348bf585b50a2e74b8033adc75db609a57"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wt/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101143, "scanner": "repobility-docker", "fingerprint": "f5af62cee82f9619c29405e7c0a00532ee812ec1abd54c45950ba156a4842a5f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f5af62cee82f9619c29405e7c0a00532ee812ec1abd54c45950ba156a4842a5f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wt/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101142, "scanner": "repobility-docker", "fingerprint": "43f7d60c147820b38febf0422b282d1783c6f637ca6cc6b95a7003b7a6ac601c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43f7d60c147820b38febf0422b282d1783c6f637ca6cc6b95a7003b7a6ac601c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wpantund/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101141, "scanner": "repobility-docker", "fingerprint": "0403525d5267d16550eaf0b86046ef90dab916af05df254fba340c696516f66a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0403525d5267d16550eaf0b86046ef90dab916af05df254fba340c696516f66a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wpantund/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101140, "scanner": "repobility-docker", "fingerprint": "0c2c66dec6948b9b7b1e7d181f3154ff6be53d5ae66b36552498545f9cc36e7f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c2c66dec6948b9b7b1e7d181f3154ff6be53d5ae66b36552498545f9cc36e7f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woodstox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101139, "scanner": "repobility-docker", "fingerprint": "c23bfaa204686162f4ecf7f6767bfcf7b7c6dbc30b98688969f61e52943d2b32", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c23bfaa204686162f4ecf7f6767bfcf7b7c6dbc30b98688969f61e52943d2b32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woodstox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101138, "scanner": "repobility-docker", "fingerprint": "959e262df408423f87ec6258a8846dc73513daee980ae5425f86fd5e8481905e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|959e262df408423f87ec6258a8846dc73513daee980ae5425f86fd5e8481905e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolftpm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101136, "scanner": "repobility-docker", "fingerprint": "43fbfd0d051ec0433fa403504337706425eb8a3c678c0d15d06f965b1a8a66a9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43fbfd0d051ec0433fa403504337706425eb8a3c678c0d15d06f965b1a8a66a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101133, "scanner": "repobility-docker", "fingerprint": "c966fbdc2fb5a0d4e021b563baf8da07bc56b52bf5d6d55ed8832673c6e65937", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c966fbdc2fb5a0d4e021b563baf8da07bc56b52bf5d6d55ed8832673c6e65937"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101132, "scanner": "repobility-docker", "fingerprint": "7e83daba209db63be3953382c395f9b42dd3caca8f5f58b598925148d23c36ef", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e83daba209db63be3953382c395f9b42dd3caca8f5f58b598925148d23c36ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101129, "scanner": "repobility-docker", "fingerprint": "1ffa3a0bca5ea9e09a12ff39e499d01643e91de8855882d978067af2c5478ed3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ffa3a0bca5ea9e09a12ff39e499d01643e91de8855882d978067af2c5478ed3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfmqtt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101126, "scanner": "repobility-docker", "fingerprint": "41f7e3b3ea5f151b0a43d816f94c877cbe862a8234cb4136bf8f3ef3ba21fd27", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41f7e3b3ea5f151b0a43d816f94c877cbe862a8234cb4136bf8f3ef3ba21fd27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfmqtt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101125, "scanner": "repobility-docker", "fingerprint": "be77a6a4170851fadd3f0dbe52f0e50f40331b434932ce0c70a6b92b4cd7ab12", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be77a6a4170851fadd3f0dbe52f0e50f40331b434932ce0c70a6b92b4cd7ab12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfboot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101122, "scanner": "repobility-docker", "fingerprint": "33f7058109238ca60f0d854f86b156df9de085916ce61e31a03c1aacdbf04d39", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33f7058109238ca60f0d854f86b156df9de085916ce61e31a03c1aacdbf04d39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woff2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101119, "scanner": "repobility-docker", "fingerprint": "19f1e0d012c02d7c6bdb9aa15d6bd6a5e68ca6125b6dddfdd2c9c4ed43b3d3b4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19f1e0d012c02d7c6bdb9aa15d6bd6a5e68ca6125b6dddfdd2c9c4ed43b3d3b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woff2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101118, "scanner": "repobility-docker", "fingerprint": "5bda7a24521392324df86181db3fe53e739ea819c0f4304544030f7c63cedd86", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5bda7a24521392324df86181db3fe53e739ea819c0f4304544030f7c63cedd86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wireshark/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101115, "scanner": "repobility-docker", "fingerprint": "45576892927b4c586691db0b8e8e150923653c532a9be0dc9d4e5342e781b702", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45576892927b4c586691db0b8e8e150923653c532a9be0dc9d4e5342e781b702"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wheel/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101114, "scanner": "repobility-docker", "fingerprint": "48962c44748104def9e16521e9b242e3870378f86027b9c2bd7936fe40aad2eb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48962c44748104def9e16521e9b242e3870378f86027b9c2bd7936fe40aad2eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wheel/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101113, "scanner": "repobility-docker", "fingerprint": "c06a39e00a4144ce6b305c4f79092dfb5452deb678c16854669b72f2bdfc5e11", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c06a39e00a4144ce6b305c4f79092dfb5452deb678c16854669b72f2bdfc5e11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101110, "scanner": "repobility-docker", "fingerprint": "6794a2a23a62780b7a568bd76624f3583b6b00a9f5b7122206fd0c480da73776", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6794a2a23a62780b7a568bd76624f3583b6b00a9f5b7122206fd0c480da73776"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101109, "scanner": "repobility-docker", "fingerprint": "8b7ad05ac0e182b3fcfaecf40f0d7c222ab2660be29a26cab3bb371abaea44ae", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b7ad05ac0e182b3fcfaecf40f0d7c222ab2660be29a26cab3bb371abaea44ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101106, "scanner": "repobility-docker", "fingerprint": "34232eddfe6a3b87922a3491fa5af3a4f48065f0b3acd443dc628376efb2455d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|34232eddfe6a3b87922a3491fa5af3a4f48065f0b3acd443dc628376efb2455d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101105, "scanner": "repobility-docker", "fingerprint": "675bd04cc8c7f32bd45d1b645c375f447435dfb95142ae458bd47f885cca0345", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|675bd04cc8c7f32bd45d1b645c375f447435dfb95142ae458bd47f885cca0345"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101104, "scanner": "repobility-docker", "fingerprint": "6fef85601c571e24c254b8ae58e0b25674c9b98cfdb3e4188b01559d66d94bdc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6fef85601c571e24c254b8ae58e0b25674c9b98cfdb3e4188b01559d66d94bdc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websocket-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101101, "scanner": "repobility-docker", "fingerprint": "c6f11e2e2602e1b2b2c51c9aecf6b6d14c9ed69537ca0721a9d8c38e6b64ea0a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c6f11e2e2602e1b2b2c51c9aecf6b6d14c9ed69537ca0721a9d8c38e6b64ea0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websocket-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101100, "scanner": "repobility-docker", "fingerprint": "e90495569b08fbcf8bbca02f4aa3605ae7f0c884ff2afa86f37e6abd670fcfa8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e90495569b08fbcf8bbca02f4aa3605ae7f0c884ff2afa86f37e6abd670fcfa8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wazuh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101097, "scanner": "repobility-docker", "fingerprint": "cb9e08ec8ef819907e34606f78c001a17a42b5688da0553b5494bceebb23aff8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb9e08ec8ef819907e34606f78c001a17a42b5688da0553b5494bceebb23aff8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wazuh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101096, "scanner": "repobility-docker", "fingerprint": "95e6da19ba4e0ed8cd0cf6047b7713cd1f4007d82dcedceacb2824252c2281bb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95e6da19ba4e0ed8cd0cf6047b7713cd1f4007d82dcedceacb2824252c2281bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wavpack/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101093, "scanner": "repobility-docker", "fingerprint": "162e6e9902e9be2a6ea96426b811db25368a328f67c0835bb34d897b4577358f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|162e6e9902e9be2a6ea96426b811db25368a328f67c0835bb34d897b4577358f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wavpack/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101092, "scanner": "repobility-docker", "fingerprint": "f07ef04b65841cbab1e44453ce3343ee88ebdaaf73f34bc4f0517d293d17356f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f07ef04b65841cbab1e44453ce3343ee88ebdaaf73f34bc4f0517d293d17356f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmtime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101089, "scanner": "repobility-docker", "fingerprint": "3f95861bd6406d0b7562ccab32c992699a0f75f0b4830a451ef7cda64bc7b691", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f95861bd6406d0b7562ccab32c992699a0f75f0b4830a451ef7cda64bc7b691"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmtime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101088, "scanner": "repobility-docker", "fingerprint": "70450a1bc66130242a822ed3ef0749d71e2042b6024cc97cddca4ba1fad4b2ad", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|70450a1bc66130242a822ed3ef0749d71e2042b6024cc97cddca4ba1fad4b2ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101087, "scanner": "repobility-docker", "fingerprint": "543c936eaf2e1d23a778f3a0e64bdab803a4fa9e09b5adb61c76fc6992019e10", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|543c936eaf2e1d23a778f3a0e64bdab803a4fa9e09b5adb61c76fc6992019e10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101086, "scanner": "repobility-docker", "fingerprint": "2274e5eedf23442d2bfd2cab933d6ffb994005058201aa2c234108f10e6052db", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2274e5eedf23442d2bfd2cab933d6ffb994005058201aa2c234108f10e6052db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101083, "scanner": "repobility-docker", "fingerprint": "fb79886144dea7db368c8e63d6da1d8f3702863bd86dfb632b10f0469f9b2294", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb79886144dea7db368c8e63d6da1d8f3702863bd86dfb632b10f0469f9b2294"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 101082, "scanner": "repobility-docker", "fingerprint": "077b6ae0382f4440f4d5916be520a75bd16ac063ff1d225b11286ccd437073ef", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|077b6ae0382f4440f4d5916be520a75bd16ac063ff1d225b11286ccd437073ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 101081, "scanner": "repobility-docker", "fingerprint": "adff46aa565ad790d8470a32c353922284f312fc62b51bb26d26639e365d1d2f", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|adff46aa565ad790d8470a32c353922284f312fc62b51bb26d26639e365d1d2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101078, "scanner": "repobility-docker", "fingerprint": "ea6e91783218c0b4e2af897f9bc5bd35395cbd4c20d73dc4ab537a5990d62b62", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea6e91783218c0b4e2af897f9bc5bd35395cbd4c20d73dc4ab537a5990d62b62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101077, "scanner": "repobility-docker", "fingerprint": "dcf17f11492db2e73246ba14f0fbd1d62a39ef33b1b5dc35e5ad48af20625383", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dcf17f11492db2e73246ba14f0fbd1d62a39ef33b1b5dc35e5ad48af20625383"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasm3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101074, "scanner": "repobility-docker", "fingerprint": "fce8d8740089ee6e29a472953e2751237e79af001757e7f58d4f0a27e2c86e06", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fce8d8740089ee6e29a472953e2751237e79af001757e7f58d4f0a27e2c86e06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasm3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101073, "scanner": "repobility-docker", "fingerprint": "cd31ae587363648a56681746ffd1e41a29273b348bc0a77cd4aeb40250b6f93c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd31ae587363648a56681746ffd1e41a29273b348bc0a77cd4aeb40250b6f93c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wamr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101070, "scanner": "repobility-docker", "fingerprint": "c041d16990ad2e0136d7ad1d39cf3363661c794714f82d2bfa647095d19afe9f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c041d16990ad2e0136d7ad1d39cf3363661c794714f82d2bfa647095d19afe9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wamr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101069, "scanner": "repobility-docker", "fingerprint": "38df5e75fe0ed6aa930b2bba94cf512637a46b7fbdd41646d1e67db5c76418b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38df5e75fe0ed6aa930b2bba94cf512637a46b7fbdd41646d1e67db5c76418b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wabt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101066, "scanner": "repobility-docker", "fingerprint": "9836b694a97129cdafb1c7c25473b6695999194f43e41e9c7f35420239e739a6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9836b694a97129cdafb1c7c25473b6695999194f43e41e9c7f35420239e739a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wabt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101065, "scanner": "repobility-docker", "fingerprint": "afbca3258bb05f3f36da38e4a1d3c86d750628d378c7b8e0f61dd1a8dce43525", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|afbca3258bb05f3f36da38e4a1d3c86d750628d378c7b8e0f61dd1a8dce43525"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3m/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101062, "scanner": "repobility-docker", "fingerprint": "d25c9de5c5f8ad2242f714049732a1cc22f4e41e71e37984d93a5da302944bb9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d25c9de5c5f8ad2242f714049732a1cc22f4e41e71e37984d93a5da302944bb9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3m/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101061, "scanner": "repobility-docker", "fingerprint": "8e8d791a64f7e828ad08756e120f62f6fb03d6ac77098642029c23a4488a7813", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8e8d791a64f7e828ad08756e120f62f6fb03d6ac77098642029c23a4488a7813"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3lib/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101060, "scanner": "repobility-docker", "fingerprint": "5f4dfa2798473f0ff953272b398e6c2e56e2c9b6978a0e29e014b54939271043", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f4dfa2798473f0ff953272b398e6c2e56e2c9b6978a0e29e014b54939271043"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3lib/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101059, "scanner": "repobility-docker", "fingerprint": "4693532695c68d81a7a2b1cf544ef6fff4eb39d17561df9b466651762943791c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4693532695c68d81a7a2b1cf544ef6fff4eb39d17561df9b466651762943791c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulnerable-project/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101058, "scanner": "repobility-docker", "fingerprint": "97eca6970f526e5fcab68f63c9f0e25590f41f84400bdbd8b5ad328a8f580a7a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|97eca6970f526e5fcab68f63c9f0e25590f41f84400bdbd8b5ad328a8f580a7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulnerable-project/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101057, "scanner": "repobility-docker", "fingerprint": "18979a12fec1fb7289ccb1c11e91dad84ee34b3ea1191f3b5942935cdda81f1b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18979a12fec1fb7289ccb1c11e91dad84ee34b3ea1191f3b5942935cdda81f1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulkan-loader/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101054, "scanner": "repobility-docker", "fingerprint": "6a11f9f6cd32b12e12917fe99cb2249cdef97c04da90c7a016daaba219d8cd15", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a11f9f6cd32b12e12917fe99cb2249cdef97c04da90c7a016daaba219d8cd15"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulkan-loader/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101053, "scanner": "repobility-docker", "fingerprint": "e95df20aa6b320c3031e3fe3e2d611ab590cacf6923b6dd0ee723bbadbabd9b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e95df20aa6b320c3031e3fe3e2d611ab590cacf6923b6dd0ee723bbadbabd9b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vtpm-td/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101050, "scanner": "repobility-docker", "fingerprint": "c51ecaa9e561dde73158c8a12621fc0defd4621cd04ecf1541180d910c070ad7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c51ecaa9e561dde73158c8a12621fc0defd4621cd04ecf1541180d910c070ad7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vtpm-td/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101049, "scanner": "repobility-docker", "fingerprint": "0f6a2c8e1506caafaa3e8058638a7a072913a1bdc57e2e27ca783ba17e9e871b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f6a2c8e1506caafaa3e8058638a7a072913a1bdc57e2e27ca783ba17e9e871b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vorbis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101045, "scanner": "repobility-docker", "fingerprint": "363499344958e1325850be3a792f4f4dc6e530231b50f4f4ce39f3d0d5100cc7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|363499344958e1325850be3a792f4f4dc6e530231b50f4f4ce39f3d0d5100cc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vorbis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101044, "scanner": "repobility-docker", "fingerprint": "ef6e9acd15b257e4ecaaf0af7354aa43602d318e6347e39e937207ae184d07cd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef6e9acd15b257e4ecaaf0af7354aa43602d318e6347e39e937207ae184d07cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/volcano/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101043, "scanner": "repobility-docker", "fingerprint": "3e38f63083989a107b0cbce36a8ebf5e1a4c685160c209974e5f05fc91490a4e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e38f63083989a107b0cbce36a8ebf5e1a4c685160c209974e5f05fc91490a4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/volcano/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101042, "scanner": "repobility-docker", "fingerprint": "67162b929ae2260ba396b80003d88e9541c5bbe019cb73b3047930909ab4cf41", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67162b929ae2260ba396b80003d88e9541c5bbe019cb73b3047930909ab4cf41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vlc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101039, "scanner": "repobility-docker", "fingerprint": "8bbb5b91b24c751e929fe7eb3034152b6dda603158e5c3816abd13a8238de1dd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bbb5b91b24c751e929fe7eb3034152b6dda603158e5c3816abd13a8238de1dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vitess/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101038, "scanner": "repobility-docker", "fingerprint": "0c1467fcd2270080a8186618f634e08f9094e5547e6a5e41cf1d851d66cfa28d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c1467fcd2270080a8186618f634e08f9094e5547e6a5e41cf1d851d66cfa28d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/varnish/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101035, "scanner": "repobility-docker", "fingerprint": "ce1d18bcec55613fbcf5224c05bf9918d94386981785d86a737689bc01e0ddbb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce1d18bcec55613fbcf5224c05bf9918d94386981785d86a737689bc01e0ddbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/varnish/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101034, "scanner": "repobility-docker", "fingerprint": "bc6c21e020630c819dfc19ecc6349dbfc73301c3dba05019e3d62455de5c346d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc6c21e020630c819dfc19ecc6349dbfc73301c3dba05019e3d62455de5c346d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/valijson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101031, "scanner": "repobility-docker", "fingerprint": "2192a828b7cd2759bb4bea36cde971b7f28fce84c9503d15c7e89a5920e484d0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2192a828b7cd2759bb4bea36cde971b7f28fce84c9503d15c7e89a5920e484d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/valijson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101030, "scanner": "repobility-docker", "fingerprint": "5e870cf3556d99ab5fb7b48d7d8f038a3c051ebe0c24715d1a6e1e10afebbebe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e870cf3556d99ab5fb7b48d7d8f038a3c051ebe0c24715d1a6e1e10afebbebe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/validators/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101029, "scanner": "repobility-docker", "fingerprint": "dd95753034a3a2be4cd1d63401fce49a5afd2186d65b46d064aafbbe4b7667e1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd95753034a3a2be4cd1d63401fce49a5afd2186d65b46d064aafbbe4b7667e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/validators/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101028, "scanner": "repobility-docker", "fingerprint": "e828664d442bd3d3bc68d427594cc26fb8f6f3d6ffe1bd26c9c21488c7d556fc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e828664d442bd3d3bc68d427594cc26fb8f6f3d6ffe1bd26c9c21488c7d556fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/v8/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101026, "scanner": "repobility-docker", "fingerprint": "207454e4a89e274fc0ea9c870f37d9ffc44c4e785c41507040ca56392ed5870e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|207454e4a89e274fc0ea9c870f37d9ffc44c4e785c41507040ca56392ed5870e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/v8/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101025, "scanner": "repobility-docker", "fingerprint": "ca4f41feb59b114b63ec8537ac7e5cb257dcbfd98eb91ce13eff8141d855447b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca4f41feb59b114b63ec8537ac7e5cb257dcbfd98eb91ce13eff8141d855447b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uwebsockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101024, "scanner": "repobility-docker", "fingerprint": "d5edc9a7f32568c41f08e65ce01b8adafc94240f0b92fdecc4d7c14093777441", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5edc9a7f32568c41f08e65ce01b8adafc94240f0b92fdecc4d7c14093777441"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uwebsockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101023, "scanner": "repobility-docker", "fingerprint": "1c84c5c5bb6d363023acabccfac3719f8022e871928cc85911510b5cf593a3a0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c84c5c5bb6d363023acabccfac3719f8022e871928cc85911510b5cf593a3a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/util-linux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101020, "scanner": "repobility-docker", "fingerprint": "c64d4db1ee28e6a08471220f1ec1ea04f6ccd5bedb937384149374d36405668b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c64d4db1ee28e6a08471220f1ec1ea04f6ccd5bedb937384149374d36405668b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/util-linux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101019, "scanner": "repobility-docker", "fingerprint": "9b96dcd8ab366ecc168010712b4667e0dbc688f7edd09a2bb2b8f60503b2750b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b96dcd8ab366ecc168010712b4667e0dbc688f7edd09a2bb2b8f60503b2750b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8proc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101016, "scanner": "repobility-docker", "fingerprint": "9dfc41f7ed3e77ab9cdab2f74915c0e90bc6a25d3781edba91e3c41bb8eb4b67", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9dfc41f7ed3e77ab9cdab2f74915c0e90bc6a25d3781edba91e3c41bb8eb4b67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8proc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101015, "scanner": "repobility-docker", "fingerprint": "f6819a66c3c8fb864c9de3ac8e9e661c92e9c42cbf6279c61ec6d56cde047c94", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6819a66c3c8fb864c9de3ac8e9e661c92e9c42cbf6279c61ec6d56cde047c94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8parse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101014, "scanner": "repobility-docker", "fingerprint": "2bc4ded3783a74adef1af96bee7705c9dc999761025ee85548ec3837f414adba", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2bc4ded3783a74adef1af96bee7705c9dc999761025ee85548ec3837f414adba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8parse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101013, "scanner": "repobility-docker", "fingerprint": "bd84a6b09fc66bdf4f00fb8d5166f2dcc99920ab211592012fe5c002347cb523", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd84a6b09fc66bdf4f00fb8d5166f2dcc99920ab211592012fe5c002347cb523"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usrsctp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101010, "scanner": "repobility-docker", "fingerprint": "221c8776aae6c402fabdc05af7d78cc788a49cc283a64bdcd7a598dea839c42f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|221c8776aae6c402fabdc05af7d78cc788a49cc283a64bdcd7a598dea839c42f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usrsctp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101009, "scanner": "repobility-docker", "fingerprint": "0c6f64c54ef0345fb636ba136f24328689984fa672dcb8e77bd1d6d903df3b28", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c6f64c54ef0345fb636ba136f24328689984fa672dcb8e77bd1d6d903df3b28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 101002, "scanner": "repobility-docker", "fingerprint": "a2d65a1577d201a33ef2455dd10a5201a417a08b50f25310d5ab2c81afd19b42", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2d65a1577d201a33ef2455dd10a5201a417a08b50f25310d5ab2c81afd19b42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 101001, "scanner": "repobility-docker", "fingerprint": "7010ccf9a347699af983e458ce74242825e8872b25a7571054c6afbfa98027f2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7010ccf9a347699af983e458ce74242825e8872b25a7571054c6afbfa98027f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usbguard/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100998, "scanner": "repobility-docker", "fingerprint": "9c56c7c71a34e3b46ea69885a9b6f530ea1c3dd4c48016e020767458c0a736d4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c56c7c71a34e3b46ea69885a9b6f530ea1c3dd4c48016e020767458c0a736d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usbguard/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100997, "scanner": "repobility-docker", "fingerprint": "e783c84ca86580dc1257bfceed2ca83ac4aabacb71eb4cf5c913aa303681cebb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e783c84ca86580dc1257bfceed2ca83ac4aabacb71eb4cf5c913aa303681cebb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/urllib3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100996, "scanner": "repobility-docker", "fingerprint": "cdb4e77652d48ff30d8a2dac960dc89b34c59f5089100d79326bcfda3cc6a698", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cdb4e77652d48ff30d8a2dac960dc89b34c59f5089100d79326bcfda3cc6a698"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/urllib3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100995, "scanner": "repobility-docker", "fingerprint": "adb24c25ca7942ba1dabe1429726b84e6ab12d3d7138993518463b2754b63f90", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|adb24c25ca7942ba1dabe1429726b84e6ab12d3d7138993518463b2754b63f90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/urlextract/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100994, "scanner": "repobility-docker", "fingerprint": "8e193e46d3818d68e7b4dceb8d12ae8b2d9d2607ae45c8b1f4bddd22e306e976", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8e193e46d3818d68e7b4dceb8d12ae8b2d9d2607ae45c8b1f4bddd22e306e976"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/urlextract/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100993, "scanner": "repobility-docker", "fingerprint": "c3f6c81505102ec0bcbdc7a0b40e422df0330ceb7cf079299fd1bd211f44ce1a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c3f6c81505102ec0bcbdc7a0b40e422df0330ceb7cf079299fd1bd211f44ce1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uritemplate/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100992, "scanner": "repobility-docker", "fingerprint": "8f9deb0d2a6367c8fc189cf26087b5ef370b3ce93151bcd3de04315f7afc5d8e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f9deb0d2a6367c8fc189cf26087b5ef370b3ce93151bcd3de04315f7afc5d8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uritemplate/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100991, "scanner": "repobility-docker", "fingerprint": "a56b5d1b13ba98356b9d09cc609e54cfcdcf2f52d68027b81b6d1111d9c8d8aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a56b5d1b13ba98356b9d09cc609e54cfcdcf2f52d68027b81b6d1111d9c8d8aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uriparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100988, "scanner": "repobility-docker", "fingerprint": "bd19909c91efe7299df33290908853ba835c2e29d9c2dc82712202c9af548b79", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd19909c91efe7299df33290908853ba835c2e29d9c2dc82712202c9af548b79"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uriparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100987, "scanner": "repobility-docker", "fingerprint": "9466d015bb056235cd98990a5258c64c9e9ad7bdf8e8d25a7b395d9a9be9e37a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9466d015bb056235cd98990a5258c64c9e9ad7bdf8e8d25a7b395d9a9be9e37a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/upx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100984, "scanner": "repobility-docker", "fingerprint": "5ed6542dfc4691251e16e6614cb5a16ea42983b49850790fda823c01a964f2af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ed6542dfc4691251e16e6614cb5a16ea42983b49850790fda823c01a964f2af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unsafe-libyaml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100981, "scanner": "repobility-docker", "fingerprint": "33f3433de7be2e902a389cf085f72ca0399efe87880236b52e2fdb30c2cf5fec", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33f3433de7be2e902a389cf085f72ca0399efe87880236b52e2fdb30c2cf5fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unsafe-libyaml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100980, "scanner": "repobility-docker", "fingerprint": "e61daaf30d1a44604ba5741b5fe1c4ac2f288f3295a35bb403276d11bbbe4b37", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e61daaf30d1a44604ba5741b5fe1c4ac2f288f3295a35bb403276d11bbbe4b37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/univocity-parsers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100977, "scanner": "repobility-docker", "fingerprint": "9558af25905d057534478ba7b3a603a93fefa0ed3d7ae4a7469bd3c25fd8825d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9558af25905d057534478ba7b3a603a93fefa0ed3d7ae4a7469bd3c25fd8825d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/univocity-parsers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100976, "scanner": "repobility-docker", "fingerprint": "385db2bcf9b8346e8c3319eb2f2a9a0f2d700c6ee4609b78af05eb4703fd2293", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|385db2bcf9b8346e8c3319eb2f2a9a0f2d700c6ee4609b78af05eb4703fd2293"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unit/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100975, "scanner": "repobility-docker", "fingerprint": "255eb29913ab7d002c0ed2fbe76ef84f207205cfdc96e84dfdb4fab6de17e56e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|255eb29913ab7d002c0ed2fbe76ef84f207205cfdc96e84dfdb4fab6de17e56e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unit/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100974, "scanner": "repobility-docker", "fingerprint": "736d0684336546bbe3787f1abfeb9663915da03cf64c7f31ae6619da632fa271", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|736d0684336546bbe3787f1abfeb9663915da03cf64c7f31ae6619da632fa271"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unirest-java/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100973, "scanner": "repobility-docker", "fingerprint": "a26527f21c0decbb5f4f677c9445521624e755c5719d28418051c7e2605fea35", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a26527f21c0decbb5f4f677c9445521624e755c5719d28418051c7e2605fea35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unirest-java/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100972, "scanner": "repobility-docker", "fingerprint": "287c2eb23ddf1206b791425a835dc0fa53928777db0b712af2d4306bf81c8a58", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|287c2eb23ddf1206b791425a835dc0fa53928777db0b712af2d4306bf81c8a58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unicorn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100969, "scanner": "repobility-docker", "fingerprint": "aa7e36e6f9ecdc48846d8e897829b8dbc32df91d507f84d4fa8eb26b70263463", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa7e36e6f9ecdc48846d8e897829b8dbc32df91d507f84d4fa8eb26b70263463"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unicode-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100968, "scanner": "repobility-docker", "fingerprint": "b084bc75b301e336bb5eed0c0295e22c38e6296aaa4781e9045967672f212e25", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b084bc75b301e336bb5eed0c0295e22c38e6296aaa4781e9045967672f212e25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unicode-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100967, "scanner": "repobility-docker", "fingerprint": "954bcb28dd2f27e2e9c7fddae7c282856df79728330468baf75e3d742416b2f1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|954bcb28dd2f27e2e9c7fddae7c282856df79728330468baf75e3d742416b2f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/undertow/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100966, "scanner": "repobility-docker", "fingerprint": "0465e60739d1d173d762fe90b866879f810c671d584639bf71a94c8835144f48", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0465e60739d1d173d762fe90b866879f810c671d584639bf71a94c8835144f48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/undertow/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100965, "scanner": "repobility-docker", "fingerprint": "1001238ca3aa01e42b441a36bb599805bca45c6761d5ef60268f3a48c77f1eae", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1001238ca3aa01e42b441a36bb599805bca45c6761d5ef60268f3a48c77f1eae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/underscore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100962, "scanner": "repobility-docker", "fingerprint": "7565f46d0e9c968a5134040bf2b9f688a9dd5e43f7925c824e1b2121ca546f29", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7565f46d0e9c968a5134040bf2b9f688a9dd5e43f7925c824e1b2121ca546f29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/underscore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100961, "scanner": "repobility-docker", "fingerprint": "bf1bcca004f3e3d57decbfc6252a4e37157b12bb847da95b377a173317979f2d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf1bcca004f3e3d57decbfc6252a4e37157b12bb847da95b377a173317979f2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unbound/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100958, "scanner": "repobility-docker", "fingerprint": "2776b29592361a50af99090cb31fda2346768fdaf6185d05ad2d6182c4e35b10", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2776b29592361a50af99090cb31fda2346768fdaf6185d05ad2d6182c4e35b10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unbound/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100957, "scanner": "repobility-docker", "fingerprint": "b0a8a3e250d37810b309ae076760dd2f6062d569973cfa1903dd1c531a7b2840", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0a8a3e250d37810b309ae076760dd2f6062d569973cfa1903dd1c531a7b2840"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100951, "scanner": "repobility-docker", "fingerprint": "cef9a24cbed28b460819a6da0a89d88882e4f3d4ba509bd52325602d4e01ce6e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cef9a24cbed28b460819a6da0a89d88882e4f3d4ba509bd52325602d4e01ce6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100950, "scanner": "repobility-docker", "fingerprint": "580c6bb3b3f7685a4c3e577fc60eb23bd8abadd427d9418046802cad565cdf4a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|580c6bb3b3f7685a4c3e577fc60eb23bd8abadd427d9418046802cad565cdf4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ujson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100949, "scanner": "repobility-docker", "fingerprint": "a92e70ba14de94fc61121e307cad852fcd6f3961aa009994914865c0f10f13e6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a92e70ba14de94fc61121e307cad852fcd6f3961aa009994914865c0f10f13e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ujson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100948, "scanner": "repobility-docker", "fingerprint": "0cb90893a9c3802ec574b62cd02c85c8438d28e0627faeab4377e1e57e96dd44", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cb90893a9c3802ec574b62cd02c85c8438d28e0627faeab4377e1e57e96dd44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uint256/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100947, "scanner": "repobility-docker", "fingerprint": "c98f1a8a317904c0d370ea7e3fdc9dddb949c31086b5211d37aaef25a1b01fc3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c98f1a8a317904c0d370ea7e3fdc9dddb949c31086b5211d37aaef25a1b01fc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uint256/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100946, "scanner": "repobility-docker", "fingerprint": "c64f8414ecd1f89c6e9ca0df83bf07151fe8c75ad07f12e7783f000d1224a078", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c64f8414ecd1f89c6e9ca0df83bf07151fe8c75ad07f12e7783f000d1224a078"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ua-parser-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100945, "scanner": "repobility-docker", "fingerprint": "e08827030683c8b7e611de46468684936021793c2292d590ed1c7797cf5299e1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e08827030683c8b7e611de46468684936021793c2292d590ed1c7797cf5299e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ua-parser-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100944, "scanner": "repobility-docker", "fingerprint": "bd2f77048d1b5775546255bffbcc8eb5471a37a1cf19b345635b8759035f459a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd2f77048d1b5775546255bffbcc8eb5471a37a1cf19b345635b8759035f459a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-root/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100943, "scanner": "repobility-docker", "fingerprint": "523720a9789e5abb283a98fb8e44483f3598d9d45ba236d5e5a44a304c23ddd9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|523720a9789e5abb283a98fb8e44483f3598d9d45ba236d5e5a44a304c23ddd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-root/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100942, "scanner": "repobility-docker", "fingerprint": "846ced39f0ee71eff4d139e958e57e4906eed5e5c4a3e9e9e4a78108bd80702c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|846ced39f0ee71eff4d139e958e57e4906eed5e5c4a3e9e9e4a78108bd80702c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-boot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100939, "scanner": "repobility-docker", "fingerprint": "8c68ba5baebecfbc1783ed33bc5129d715c72e88306dd0709889e7cc280bee0f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8c68ba5baebecfbc1783ed33bc5129d715c72e88306dd0709889e7cc280bee0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-boot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100938, "scanner": "repobility-docker", "fingerprint": "08edbae6592497a94fd81e53728a8b56950dc53cda3f304677aec04f7e5739e2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08edbae6592497a94fd81e53728a8b56950dc53cda3f304677aec04f7e5739e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tyrus/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100937, "scanner": "repobility-docker", "fingerprint": "43f1a148ed52c45e437044edc9a97f7f081bfe527a4348ca39f3b38319acfc68", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43f1a148ed52c45e437044edc9a97f7f081bfe527a4348ca39f3b38319acfc68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tyrus/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100936, "scanner": "repobility-docker", "fingerprint": "d03fadded73ba1b13b3ebf747347ad4d41e78171ed168017f1a1ae9fbe27a363", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d03fadded73ba1b13b3ebf747347ad4d41e78171ed168017f1a1ae9fbe27a363"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typst/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100935, "scanner": "repobility-docker", "fingerprint": "84253987b751e79534766bbae30a2f51a00c0f55f14eecf59e25a4050d6a89c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84253987b751e79534766bbae30a2f51a00c0f55f14eecf59e25a4050d6a89c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typst/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100934, "scanner": "repobility-docker", "fingerprint": "5f962ee5efcd49dcae61e8dbfe9a84c16adc05d90f099e00769798ae133dff9c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f962ee5efcd49dcae61e8dbfe9a84c16adc05d90f099e00769798ae133dff9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typing_extensions/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100933, "scanner": "repobility-docker", "fingerprint": "57bda87dd5d7d5bf1701148c15647aba4412d0c3f21c470ed60c94f7a808edf6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57bda87dd5d7d5bf1701148c15647aba4412d0c3f21c470ed60c94f7a808edf6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typing_extensions/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100932, "scanner": "repobility-docker", "fingerprint": "d96ca30d0aab9fba8fe5e865a5c80c592b3b33020cfa1835464735e982035137", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d96ca30d0aab9fba8fe5e865a5c80c592b3b33020cfa1835464735e982035137"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typescript-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100931, "scanner": "repobility-docker", "fingerprint": "198da68f184581a190317cf6e67649ce873cf7fd8fd6fd51c003283bd2f0dc94", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|198da68f184581a190317cf6e67649ce873cf7fd8fd6fd51c003283bd2f0dc94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typescript-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100930, "scanner": "repobility-docker", "fingerprint": "3db6b2d68a3ad78eedf8d0848578e848e36aef257dbfc9c342ae283bcd153bb6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3db6b2d68a3ad78eedf8d0848578e848e36aef257dbfc9c342ae283bcd153bb6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typescript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100929, "scanner": "repobility-docker", "fingerprint": "cd34049ddb70b6c570bac0ad606f6cf92b7e24e01c7c2ee89b4590727360550a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd34049ddb70b6c570bac0ad606f6cf92b7e24e01c7c2ee89b4590727360550a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/typescript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100928, "scanner": "repobility-docker", "fingerprint": "f5e9634a120b2de750ad45aaee8d5425d952ff68d88c2d9fa7e73d81354e19de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f5e9634a120b2de750ad45aaee8d5425d952ff68d88c2d9fa7e73d81354e19de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/twitter4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100927, "scanner": "repobility-docker", "fingerprint": "959f97b084d2b182a3518cf2c9026aa16e574cd50359ebd110de27608ed6e193", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|959f97b084d2b182a3518cf2c9026aa16e574cd50359ebd110de27608ed6e193"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/twitter4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100926, "scanner": "repobility-docker", "fingerprint": "81c529960edb52760325bb1665f5460824fb503ca1acd9b88c53e552cfafdbdf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|81c529960edb52760325bb1665f5460824fb503ca1acd9b88c53e552cfafdbdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/twelve-monkeys/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100925, "scanner": "repobility-docker", "fingerprint": "b86041e1d7e8490620b37a52bd004c2940655f68907ff9ccf287002bb1b2c7bf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b86041e1d7e8490620b37a52bd004c2940655f68907ff9ccf287002bb1b2c7bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/twelve-monkeys/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100924, "scanner": "repobility-docker", "fingerprint": "cc99e8054dc2b870e8390014b304fdf64e485baae21ca80804fe3f3331559be5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cc99e8054dc2b870e8390014b304fdf64e485baae21ca80804fe3f3331559be5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/turf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100923, "scanner": "repobility-docker", "fingerprint": "f92bf53be225fe1854249f71462c60b9afd026d099331de254a07be068c813a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f92bf53be225fe1854249f71462c60b9afd026d099331de254a07be068c813a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/turf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100922, "scanner": "repobility-docker", "fingerprint": "58d5200fbd9d8934f6f23a61545cbf4e7963a5efc2a3fb26011ec2a3d3ae1cc5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58d5200fbd9d8934f6f23a61545cbf4e7963a5efc2a3fb26011ec2a3d3ae1cc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tungstenite-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100921, "scanner": "repobility-docker", "fingerprint": "30d2ba5ba36602c8096203f6b13c66ed0051eaa18bd11647d2f5f9b0ebe64ae0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|30d2ba5ba36602c8096203f6b13c66ed0051eaa18bd11647d2f5f9b0ebe64ae0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tungstenite-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100920, "scanner": "repobility-docker", "fingerprint": "708aa21cec8de14c3594cbe127ca692cb4bb31d1bc117659feda5c4d810eaa99", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|708aa21cec8de14c3594cbe127ca692cb4bb31d1bc117659feda5c4d810eaa99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ttf-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100919, "scanner": "repobility-docker", "fingerprint": "64eec6a402a6efe2612e05db64322110473dc50331d8027db1a8eb526902ce49", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64eec6a402a6efe2612e05db64322110473dc50331d8027db1a8eb526902ce49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ttf-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100918, "scanner": "repobility-docker", "fingerprint": "fabd6e0827abdf7a54cd54d9aa35103b0ebe760cdcad8d0f294676419b964363", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fabd6e0827abdf7a54cd54d9aa35103b0ebe760cdcad8d0f294676419b964363"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tslib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100917, "scanner": "repobility-docker", "fingerprint": "99d3559181081fe637d890edc5d0e32177586ec58ce3d12124672620d1054eec", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99d3559181081fe637d890edc5d0e32177586ec58ce3d12124672620d1054eec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tslib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100916, "scanner": "repobility-docker", "fingerprint": "ee672c02059663cb101f43488c7f43ce4fa3aac5774ec7d3cee438f026dce71d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee672c02059663cb101f43488c7f43ce4fa3aac5774ec7d3cee438f026dce71d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trust-dns/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100913, "scanner": "repobility-docker", "fingerprint": "ed126187e501f45d86e17454648b31c9e7731c4e78ab4d8aa0bb140590af30d3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed126187e501f45d86e17454648b31c9e7731c4e78ab4d8aa0bb140590af30d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trust-dns/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100912, "scanner": "repobility-docker", "fingerprint": "3075246dfa4106138a46fe6aecf3e429282a66dca88bc4c04442cae3408ad5fa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3075246dfa4106138a46fe6aecf3e429282a66dca88bc4c04442cae3408ad5fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tremor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100908, "scanner": "repobility-docker", "fingerprint": "f849d6dafe448708656ebfab071f48faa6904363fb342cf873e54027b64e743c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f849d6dafe448708656ebfab071f48faa6904363fb342cf873e54027b64e743c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tremor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100907, "scanner": "repobility-docker", "fingerprint": "74a33cceb92992be1b94a006a4060f0d171abf710c0cc1ffdda8c9e6d9316c1b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|74a33cceb92992be1b94a006a4060f0d171abf710c0cc1ffdda8c9e6d9316c1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trafficserver/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100904, "scanner": "repobility-docker", "fingerprint": "f8f8910280e197ff97078d13a2f087855c0991e597125e06f3065441f7378558", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f8f8910280e197ff97078d13a2f087855c0991e597125e06f3065441f7378558"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tqdm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100901, "scanner": "repobility-docker", "fingerprint": "a6ed61180da557e938915388c583b5e8d8b9290c79d4bf3d43c04772a9db7605", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6ed61180da557e938915388c583b5e8d8b9290c79d4bf3d43c04772a9db7605"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tqdm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100900, "scanner": "repobility-docker", "fingerprint": "80ead09680d4381c91be62508811113c884cf71633f800232cfa28891e7d88e2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|80ead09680d4381c91be62508811113c884cf71633f800232cfa28891e7d88e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2-tss/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100897, "scanner": "repobility-docker", "fingerprint": "e2fd5728be26ea57b2181e1edf9237d43670a730994c2de615d50b302f8c6676", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e2fd5728be26ea57b2181e1edf9237d43670a730994c2de615d50b302f8c6676"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2-tss/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100896, "scanner": "repobility-docker", "fingerprint": "95eff26be6f2494dfb2d9db6b50d0510428369e82e5a75b71225eb6cc3d66d07", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95eff26be6f2494dfb2d9db6b50d0510428369e82e5a75b71225eb6cc3d66d07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2/Dockerfile"}, "region": {"startLine": 7}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100893, "scanner": "repobility-docker", "fingerprint": "e0f6a2742dbe464b067a5856ef61563b313c962ded98ca8fc1f6fde64456239c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0f6a2742dbe464b067a5856ef61563b313c962ded98ca8fc1f6fde64456239c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2/Dockerfile"}, "region": {"startLine": 7}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100892, "scanner": "repobility-docker", "fingerprint": "7706d13b4b63e5ddf49d18bfcedbfacdda4b342b17cc33cb86573103cd5267fa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7706d13b4b63e5ddf49d18bfcedbfacdda4b342b17cc33cb86573103cd5267fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100889, "scanner": "repobility-docker", "fingerprint": "3559ee92fccfddf54a7b4b025c36ed9f2e2033d2f19b400665f3b0baf6738b81", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3559ee92fccfddf54a7b4b025c36ed9f2e2033d2f19b400665f3b0baf6738b81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100888, "scanner": "repobility-docker", "fingerprint": "3a8ad8999db01fc7d65701000745aceae4f528d319b7cb9f02dd76386569b149", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a8ad8999db01fc7d65701000745aceae4f528d319b7cb9f02dd76386569b149"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toolz/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100887, "scanner": "repobility-docker", "fingerprint": "58d6a497ed4f82a95225e071e7d0d6af7436b8899903383e7845e93429aa2f0b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58d6a497ed4f82a95225e071e7d0d6af7436b8899903383e7845e93429aa2f0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toolz/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100886, "scanner": "repobility-docker", "fingerprint": "7c179a92d8d460a55417335aa18afbdbdda1552949701ee03903f13c480a26e2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c179a92d8d460a55417335aa18afbdbdda1552949701ee03903f13c480a26e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toolbelt/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100885, "scanner": "repobility-docker", "fingerprint": "810b0532206f217bbd032ab40bfde66974685a6c57f0f419d9a4936076cb52b2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|810b0532206f217bbd032ab40bfde66974685a6c57f0f419d9a4936076cb52b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toolbelt/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100884, "scanner": "repobility-docker", "fingerprint": "4e7a224a69521724d65af73b984bc0ae136c11bdb3071e11f2e41b5d093a0a09", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e7a224a69521724d65af73b984bc0ae136c11bdb3071e11f2e41b5d093a0a09"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlplusplus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100881, "scanner": "repobility-docker", "fingerprint": "0a98d40f3a0c01530f786e5332548766e2025b790f2295fd1206906de37f62f0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a98d40f3a0c01530f786e5332548766e2025b790f2295fd1206906de37f62f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlkit/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100880, "scanner": "repobility-docker", "fingerprint": "f2d728b666a8f5c9a9a42bedec501f942c030d99e3a524edaaa874c200cce103", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2d728b666a8f5c9a9a42bedec501f942c030d99e3a524edaaa874c200cce103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlkit/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100879, "scanner": "repobility-docker", "fingerprint": "5bed2d81181312418487b529d29e5577de104b945bd740a0ce3523fa1ead72de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5bed2d81181312418487b529d29e5577de104b945bd740a0ce3523fa1ead72de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100878, "scanner": "repobility-docker", "fingerprint": "bc4c75edd7373438c9da971fbaa658bfa82b3d643055ef74db7419efc832d825", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc4c75edd7373438c9da971fbaa658bfa82b3d643055ef74db7419efc832d825"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toml_edit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100875, "scanner": "repobility-docker", "fingerprint": "62056adb416e6cae4c413e09a19fe34079a88c787f0d54901fcadc504628089e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62056adb416e6cae4c413e09a19fe34079a88c787f0d54901fcadc504628089e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toml_edit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100874, "scanner": "repobility-docker", "fingerprint": "41d0e5c9c9c8eb125d0fb9ebd909c2ae50ad2af42a9f064b1de93636b6e5f90f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41d0e5c9c9c8eb125d0fb9ebd909c2ae50ad2af42a9f064b1de93636b6e5f90f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100873, "scanner": "repobility-docker", "fingerprint": "d463dc31b224c38a7f9ebe550f49316b9715c819df1a80ed0de693060691ebc5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d463dc31b224c38a7f9ebe550f49316b9715c819df1a80ed0de693060691ebc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomcat/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100870, "scanner": "repobility-docker", "fingerprint": "c72ed498e04c9b3a07126eef93774209575b5da8b5964f6fd0a2589e7c3dfb96", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c72ed498e04c9b3a07126eef93774209575b5da8b5964f6fd0a2589e7c3dfb96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomcat/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100869, "scanner": "repobility-docker", "fingerprint": "3eb93a2356d4f9ac235e4cf3ae262486d1032d494ebd54bd5268ae256c5b1819", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3eb93a2356d4f9ac235e4cf3ae262486d1032d494ebd54bd5268ae256c5b1819"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tokio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100868, "scanner": "repobility-docker", "fingerprint": "527e02d41591440b50b1953c9ed14ee7112987ac768cece87796975249b047b0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|527e02d41591440b50b1953c9ed14ee7112987ac768cece87796975249b047b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tokio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100867, "scanner": "repobility-docker", "fingerprint": "d517861469d8fe9982656992bac1762ad6e2e49cde870029f4dfe04923a178d7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d517861469d8fe9982656992bac1762ad6e2e49cde870029f4dfe04923a178d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tmux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100864, "scanner": "repobility-docker", "fingerprint": "2e46a0d3eb432a46527c5daa09f87ed5274cd5a82ad243954fb1050e49b7cdb7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e46a0d3eb432a46527c5daa09f87ed5274cd5a82ad243954fb1050e49b7cdb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tmux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100863, "scanner": "repobility-docker", "fingerprint": "e9d81fb1728c4021350ed98ff2bb7facb7011b4ba2c1da772aa213ac521ee587", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9d81fb1728c4021350ed98ff2bb7facb7011b4ba2c1da772aa213ac521ee587"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyxml2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100860, "scanner": "repobility-docker", "fingerprint": "33081bc1907f79b9b1cb2ca57d2b6a2cfe542eea8734aa86ab280eaca11343d7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33081bc1907f79b9b1cb2ca57d2b6a2cfe542eea8734aa86ab280eaca11343d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyxml2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100859, "scanner": "repobility-docker", "fingerprint": "1942cf0df40eed89a5177ec834e84671a8387b505f34e47a342dba5b5c6fb508", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1942cf0df40eed89a5177ec834e84671a8387b505f34e47a342dba5b5c6fb508"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyusb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100856, "scanner": "repobility-docker", "fingerprint": "3920374a5453a3ff3c72f84f15ffcf9748ba854f8b01a73464a39529deadd7c5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3920374a5453a3ff3c72f84f15ffcf9748ba854f8b01a73464a39529deadd7c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyusb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100855, "scanner": "repobility-docker", "fingerprint": "e3717902f55ee4b58837ebbc4755b1f0bddf1e79eb8f9ace4c4ccbbf24c2a46d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e3717902f55ee4b58837ebbc4755b1f0bddf1e79eb8f9ace4c4ccbbf24c2a46d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinysparql/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100852, "scanner": "repobility-docker", "fingerprint": "15a3e8b682c2d2be3d19b96037375069a0868c08520a226a33161322a02f2651", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|15a3e8b682c2d2be3d19b96037375069a0868c08520a226a33161322a02f2651"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinysparql/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100851, "scanner": "repobility-docker", "fingerprint": "d102140b7194d61386d65dc617b7db4f998bbf544e1d0b0ea11ed65f2aac5889", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d102140b7194d61386d65dc617b7db4f998bbf544e1d0b0ea11ed65f2aac5889"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyobjloader/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100850, "scanner": "repobility-docker", "fingerprint": "734b22d30241437b7921ed70ab245006f455830b9856b98106ce0f5aa408a3e5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|734b22d30241437b7921ed70ab245006f455830b9856b98106ce0f5aa408a3e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyobjloader/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100849, "scanner": "repobility-docker", "fingerprint": "3991e4c152ed885a0467a69e8967f56eb9755cefc458ee0514ae81691e4c7f34", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3991e4c152ed885a0467a69e8967f56eb9755cefc458ee0514ae81691e4c7f34"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinygltf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100848, "scanner": "repobility-docker", "fingerprint": "922d366047b212894a6604664bdbede67703b419cc2f5280a91ddacf991bae3c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|922d366047b212894a6604664bdbede67703b419cc2f5280a91ddacf991bae3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinygltf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100847, "scanner": "repobility-docker", "fingerprint": "165bafd5177c96340eb7f2bd789b17190e6dfd83b2c7bd760cdaa8f146634a01", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|165bafd5177c96340eb7f2bd789b17190e6dfd83b2c7bd760cdaa8f146634a01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinycss2/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100846, "scanner": "repobility-docker", "fingerprint": "4430e25f31d0478b8dab2cb9d5974dfef23546eac0d9f434a9ca6c1b00725d03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4430e25f31d0478b8dab2cb9d5974dfef23546eac0d9f434a9ca6c1b00725d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinycss2/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100845, "scanner": "repobility-docker", "fingerprint": "e151ca67544aa6d2531ba8143a3f3e4308203c9af610ac3c93ba05935cdc195f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e151ca67544aa6d2531ba8143a3f3e4308203c9af610ac3c93ba05935cdc195f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tink-cc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100842, "scanner": "repobility-docker", "fingerprint": "13bfde9405fc79825744ea2798a6484c0cdcf2fe6191cf37d7877aec1b80e4a3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13bfde9405fc79825744ea2798a6484c0cdcf2fe6191cf37d7877aec1b80e4a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tink-cc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100841, "scanner": "repobility-docker", "fingerprint": "67aa8bbce61dd195a4125279636083981b4a8b09916bb84f33e10bf75fe963ca", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67aa8bbce61dd195a4125279636083981b4a8b09916bb84f33e10bf75fe963ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tink-cc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100840, "scanner": "repobility-docker", "fingerprint": "a4bb3b6aaae249dcc1b4836a96b17243d55fab63cf39ca1a97158e40266c3fee", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a4bb3b6aaae249dcc1b4836a96b17243d55fab63cf39ca1a97158e40266c3fee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/timestamp-authority/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100839, "scanner": "repobility-docker", "fingerprint": "93ce9c798f97ee09fb87bc77f8a0454071d77dbba1216e6704e9b38d4493391a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93ce9c798f97ee09fb87bc77f8a0454071d77dbba1216e6704e9b38d4493391a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/timestamp-authority/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100838, "scanner": "repobility-docker", "fingerprint": "5908b946e24839d760a45852cb55f37f5fce7cd2fe259803ec47d2fa74069faf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5908b946e24839d760a45852cb55f37f5fce7cd2fe259803ec47d2fa74069faf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/time/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100837, "scanner": "repobility-docker", "fingerprint": "f60035a91fc074a0d5dff8e3fdd36555cfcfed44d89b2272e82d1d2d99f78a45", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f60035a91fc074a0d5dff8e3fdd36555cfcfed44d89b2272e82d1d2d99f78a45"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/time/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100836, "scanner": "repobility-docker", "fingerprint": "a812fba193b9a7d4513c77b5f7c3e9b82c1b48369407275e80223e9ca6abf895", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a812fba193b9a7d4513c77b5f7c3e9b82c1b48369407275e80223e9ca6abf895"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tidy-html5/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100834, "scanner": "repobility-docker", "fingerprint": "b8c05eebd48d917ac2eda7ac65250ce6484bee26fbf29dc1b703952c9d420697", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8c05eebd48d917ac2eda7ac65250ce6484bee26fbf29dc1b703952c9d420697"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tidb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100833, "scanner": "repobility-docker", "fingerprint": "2ac93064e11749d978bdbf4fe5bf2949d231604cbdc3f2f56a67bc6b69b255e3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ac93064e11749d978bdbf4fe5bf2949d231604cbdc3f2f56a67bc6b69b255e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tidb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100832, "scanner": "repobility-docker", "fingerprint": "3c9059b759d0d9acd2a57adfca34e11977555d12a312baa36278806ae4c126d5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c9059b759d0d9acd2a57adfca34e11977555d12a312baa36278806ae4c126d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100829, "scanner": "repobility-docker", "fingerprint": "b92e1528d3d2ebe49c2aa2174f1556b90c49a617bd704f79d92d0558df21e790", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b92e1528d3d2ebe49c2aa2174f1556b90c49a617bd704f79d92d0558df21e790"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100828, "scanner": "repobility-docker", "fingerprint": "9517d7efe88201c617d5637d9e54318e20e1df9b2ba2eb9545fa2481433dc645", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9517d7efe88201c617d5637d9e54318e20e1df9b2ba2eb9545fa2481433dc645"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100825, "scanner": "repobility-docker", "fingerprint": "580a75bb1795d0ab799ff04549139b1a9fe5c2492d3993a0b29057317f69a2b8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|580a75bb1795d0ab799ff04549139b1a9fe5c2492d3993a0b29057317f69a2b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100824, "scanner": "repobility-docker", "fingerprint": "09e223943da3b332331af51e1d77b78e7ae1c03246472e13ea333492ce25d273", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09e223943da3b332331af51e1d77b78e7ae1c03246472e13ea333492ce25d273"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100821, "scanner": "repobility-docker", "fingerprint": "e910d7a60bd0300f00c43c981794d4a6b68b95e7ef137e144c878b07fc02640c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e910d7a60bd0300f00c43c981794d4a6b68b95e7ef137e144c878b07fc02640c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100820, "scanner": "repobility-docker", "fingerprint": "d036a99e65f212baa7af2912b4cbdac11842a05a00989517e0e5db95322fd3c9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d036a99e65f212baa7af2912b4cbdac11842a05a00989517e0e5db95322fd3c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100817, "scanner": "repobility-docker", "fingerprint": "91ed83ac66ab4792db5ee0bff1805dfd0fe13f0a1c2c5de4926079e42d7dca1e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91ed83ac66ab4792db5ee0bff1805dfd0fe13f0a1c2c5de4926079e42d7dca1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100816, "scanner": "repobility-docker", "fingerprint": "f24c19b65399e2f4e33f17e2a7ee12ccf0e19c91f20863be7c7b0e5872b43bce", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f24c19b65399e2f4e33f17e2a7ee12ccf0e19c91f20863be7c7b0e5872b43bce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100813, "scanner": "repobility-docker", "fingerprint": "b7a9dcdd07887fe8c716ce9c86c1b5550fdfe5cbf43f3f6b73dac39f391f9c56", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7a9dcdd07887fe8c716ce9c86c1b5550fdfe5cbf43f3f6b73dac39f391f9c56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100812, "scanner": "repobility-docker", "fingerprint": "c7753b087ef217f89842a091bfbeac04a36cc06022113fa148544a3dd371a77a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7753b087ef217f89842a091bfbeac04a36cc06022113fa148544a3dd371a77a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100809, "scanner": "repobility-docker", "fingerprint": "8fa84d3d40c92bd1e131318dad1ef2897396177d8f6cac53605af024b37fa732", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fa84d3d40c92bd1e131318dad1ef2897396177d8f6cac53605af024b37fa732"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100808, "scanner": "repobility-docker", "fingerprint": "43ddd21888d04e004f502af1e951af34584ebedd96cbc383c01631ba3bed6276", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43ddd21888d04e004f502af1e951af34584ebedd96cbc383c01631ba3bed6276"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-c_glib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100805, "scanner": "repobility-docker", "fingerprint": "982b194d6da904834b9dfeb0eaa68f2096706020fd4671069c60f590005c5da2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|982b194d6da904834b9dfeb0eaa68f2096706020fd4671069c60f590005c5da2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-c_glib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100804, "scanner": "repobility-docker", "fingerprint": "9a5f61cbb9c2d821c5b6d8ab1fbeba58a4c738c06bf26dba7c028f518d92a7e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9a5f61cbb9c2d821c5b6d8ab1fbeba58a4c738c06bf26dba7c028f518d92a7e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/threetenbp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100803, "scanner": "repobility-docker", "fingerprint": "ef5e958e52b187af3d87e388b02b62bc761a160a755baef5cb080e3a7410e924", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef5e958e52b187af3d87e388b02b62bc761a160a755baef5cb080e3a7410e924"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/threetenbp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100802, "scanner": "repobility-docker", "fingerprint": "7e1953a5f1161e92805a184aa9003064e49a3e0a7746085b878ced838c1ac017", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e1953a5f1161e92805a184aa9003064e49a3e0a7746085b878ced838c1ac017"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/textwrap/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100801, "scanner": "repobility-docker", "fingerprint": "89ca3b31ba3750084fb25ecc707eceefa55656a62f78dfd15cc0d8dd02c868db", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|89ca3b31ba3750084fb25ecc707eceefa55656a62f78dfd15cc0d8dd02c868db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/textwrap/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100800, "scanner": "repobility-docker", "fingerprint": "e932865f14018d7350ab6d6a59ce8260b7be95ef7c4ba813737908ecab4df5e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e932865f14018d7350ab6d6a59ce8260b7be95ef7c4ba813737908ecab4df5e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/textdistance/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100799, "scanner": "repobility-docker", "fingerprint": "af3111fb8c4696e13d96634dc621d2a4738cfa9de89285b001d2201ed2830f3d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|af3111fb8c4696e13d96634dc621d2a4738cfa9de89285b001d2201ed2830f3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/textdistance/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100798, "scanner": "repobility-docker", "fingerprint": "20f37cee7b758205f2e1ab75e6117be5da61552362f0e6f27170ef57cb5e8b3f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|20f37cee7b758205f2e1ab75e6117be5da61552362f0e6f27170ef57cb5e8b3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tesseract-ocr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100795, "scanner": "repobility-docker", "fingerprint": "191536ec50f06e7423d12feae983e44c1d93c46e6c1ee666399dc83225e011c5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|191536ec50f06e7423d12feae983e44c1d93c46e6c1ee666399dc83225e011c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tesseract-ocr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100794, "scanner": "repobility-docker", "fingerprint": "ab8a7c9c2cad97d926878557a9a76d77efb69e6117e41b027a8881d29a8af079", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab8a7c9c2cad97d926878557a9a76d77efb69e6117e41b027a8881d29a8af079"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-serving/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100790, "scanner": "repobility-docker", "fingerprint": "fb5ccaabbcfe5e81ba0a56911fb51429e1331542719b27dab39250e795037cc9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb5ccaabbcfe5e81ba0a56911fb51429e1331542719b27dab39250e795037cc9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100788, "scanner": "repobility-docker", "fingerprint": "a0f31ecb106db93fd9c7163b336c6cc1eb3c642e5614cb14334232f264a66ebd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a0f31ecb106db93fd9c7163b336c6cc1eb3c642e5614cb14334232f264a66ebd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100787, "scanner": "repobility-docker", "fingerprint": "83de5ddd7124e68068ab8daa4bde3ce0e6a15daf4501d7d09d43d3d1097dc078", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|83de5ddd7124e68068ab8daa4bde3ce0e6a15daf4501d7d09d43d3d1097dc078"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-addons/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100784, "scanner": "repobility-docker", "fingerprint": "e4ea4319dae52f01016b3d29330b5aff947d5fd35410a34710aebee4746bf64e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4ea4319dae52f01016b3d29330b5aff947d5fd35410a34710aebee4746bf64e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100782, "scanner": "repobility-docker", "fingerprint": "360dda87a030ab5d3b2edb064fd4d9747e2e6c93f1e6112428dd9005f4197236", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|360dda87a030ab5d3b2edb064fd4d9747e2e6c93f1e6112428dd9005f4197236"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tendermint/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100781, "scanner": "repobility-docker", "fingerprint": "11dbf21ddddcc4a0aa15d15774e0ebffa9d55f0f6f2efb3f582ef6aeb442bf7c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11dbf21ddddcc4a0aa15d15774e0ebffa9d55f0f6f2efb3f582ef6aeb442bf7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tendermint/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100780, "scanner": "repobility-docker", "fingerprint": "2cce6b3a673916d0f9641af2b36d595295b1cd9515b3e7d770cb103286567f3a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2cce6b3a673916d0f9641af2b36d595295b1cd9515b3e7d770cb103286567f3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/teleport/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100779, "scanner": "repobility-docker", "fingerprint": "08a518f7a3d0aabdf69c092c9417909cd36a35d5ebc609eb4aa168d8f34283ed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08a518f7a3d0aabdf69c092c9417909cd36a35d5ebc609eb4aa168d8f34283ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/teleport/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100778, "scanner": "repobility-docker", "fingerprint": "db51928d82ba4c555dcf004649dbe0c3d555292a30b4b231c2c75f147809607a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db51928d82ba4c555dcf004649dbe0c3d555292a30b4b231c2c75f147809607a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tdengine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100775, "scanner": "repobility-docker", "fingerprint": "2add5b7fa3f8963f3fccceba9d4d2276b4bc6dd4a6cf84d34a23bd48a5f51749", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2add5b7fa3f8963f3fccceba9d4d2276b4bc6dd4a6cf84d34a23bd48a5f51749"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/td-shim/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100772, "scanner": "repobility-docker", "fingerprint": "ff83a4497862ef1ccbf808d8a478d954661cb2196d53ceff0a84020b3e6150f9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff83a4497862ef1ccbf808d8a478d954661cb2196d53ceff0a84020b3e6150f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/td-shim/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100771, "scanner": "repobility-docker", "fingerprint": "dd5e5f09881d0e5283e75f76628c2712b602e3d72b9be7c29a9ed1a6f954adc5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd5e5f09881d0e5283e75f76628c2712b602e3d72b9be7c29a9ed1a6f954adc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tcmalloc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100768, "scanner": "repobility-docker", "fingerprint": "87b60158793bc419743ecb11a2bfc469f01f01a6ab7009e15a7aa3d8bc9a3efb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87b60158793bc419743ecb11a2bfc469f01f01a6ab7009e15a7aa3d8bc9a3efb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tcmalloc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100767, "scanner": "repobility-docker", "fingerprint": "07dbeb8d5ab0367fc592b906e314dbbd9d150ef9a390331398f2adb940c34720", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07dbeb8d5ab0367fc592b906e314dbbd9d150ef9a390331398f2adb940c34720"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tarantool/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100764, "scanner": "repobility-docker", "fingerprint": "8ee53fa6192055f6b86a61a0a81cdde815fdb11817f6a3da46f14c72d69647d3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ee53fa6192055f6b86a61a0a81cdde815fdb11817f6a3da46f14c72d69647d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tar-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100763, "scanner": "repobility-docker", "fingerprint": "ce1783cb5434d93b5764b9cbe86d0c282c5e7125a30ec90f611fc10dbb4ad51c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce1783cb5434d93b5764b9cbe86d0c282c5e7125a30ec90f611fc10dbb4ad51c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tar-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100762, "scanner": "repobility-docker", "fingerprint": "1d117be9e14a49846f4198e283e772803143a3459b5a0f6d218db54c51a2b497", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d117be9e14a49846f4198e283e772803143a3459b5a0f6d218db54c51a2b497"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tailscale/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100759, "scanner": "repobility-docker", "fingerprint": "8007ce8547fe31a5f66378c31eb9334dd7b428af60b454df847a66138a75e186", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8007ce8547fe31a5f66378c31eb9334dd7b428af60b454df847a66138a75e186"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tailscale/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100758, "scanner": "repobility-docker", "fingerprint": "73aae8f75319a0a22d7bce217d0bcbad29cbeb02b4f2f37e5fb33edb303eb1fd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73aae8f75319a0a22d7bce217d0bcbad29cbeb02b4f2f37e5fb33edb303eb1fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tablesaw/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100757, "scanner": "repobility-docker", "fingerprint": "2e630771f4eac4d21b7dbce6b439160196d8c4b20a3af191d70adcd11ea6cf29", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e630771f4eac4d21b7dbce6b439160196d8c4b20a3af191d70adcd11ea6cf29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tablesaw/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100756, "scanner": "repobility-docker", "fingerprint": "2386166e2af222958ed532a2034b71d5235cc56d7ef455330bc7854da5ed145a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2386166e2af222958ed532a2034b71d5235cc56d7ef455330bc7854da5ed145a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/syzkaller/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100755, "scanner": "repobility-docker", "fingerprint": "242f24c3d345769619a066135c4c26ac5e59f18d291434136c7688f0db001c1f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|242f24c3d345769619a066135c4c26ac5e59f18d291434136c7688f0db001c1f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/syzkaller/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100754, "scanner": "repobility-docker", "fingerprint": "dce6d3311e42bdc4b2696ac1e06b4c5c93a9c95702d442e936038b023ff09734", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dce6d3311e42bdc4b2696ac1e06b4c5c93a9c95702d442e936038b023ff09734"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/systemd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100753, "scanner": "repobility-docker", "fingerprint": "6962df1934ae7dcb152ed9846438128f0e9f8f7414f5de1526a048b95d46b5b6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-swift:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6962df1934ae7dcb152ed9846438128f0e9f8f7414f5de1526a048b95d46b5b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/swift-protobuf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100752, "scanner": "repobility-docker", "fingerprint": "0130ad9a4200850730e45cbbe1bd9f4f443c44b5658297e70bbb8ab02a183676", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-swift:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0130ad9a4200850730e45cbbe1bd9f4f443c44b5658297e70bbb8ab02a183676"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/swift-nio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100751, "scanner": "repobility-docker", "fingerprint": "f60a6b5171889971514269c53da1df767478df11253f2fdb7bb4cd840228b025", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f60a6b5171889971514269c53da1df767478df11253f2fdb7bb4cd840228b025"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/swagger-core/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100750, "scanner": "repobility-docker", "fingerprint": "53b17f2718f748bc6f57915a9a3502e020e2980dd9dcdc4d790c36b98125936e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53b17f2718f748bc6f57915a9a3502e020e2980dd9dcdc4d790c36b98125936e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/swagger-core/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100749, "scanner": "repobility-docker", "fingerprint": "564c94286b107e5ec24b39f372a59cb67b4fd489e8bd1792d7afec24e0de07f0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|564c94286b107e5ec24b39f372a59cb67b4fd489e8bd1792d7afec24e0de07f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/surrealdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100748, "scanner": "repobility-docker", "fingerprint": "07511a54b2e662f6c02c6e377ac2f5e85db3edf4a4853df574fe65dcb6db6c7c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07511a54b2e662f6c02c6e377ac2f5e85db3edf4a4853df574fe65dcb6db6c7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100747, "scanner": "repobility-docker", "fingerprint": "756a850a3db2fde07e531790c65ee52b0c38a4113cdae471a27a95984f78e935", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|756a850a3db2fde07e531790c65ee52b0c38a4113cdae471a27a95984f78e935"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100746, "scanner": "repobility-docker", "fingerprint": "7c2bf07b693f905c3ce15ea8f698e65bfbc3082b8c841a0acdad3115ea9c277a", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c2bf07b693f905c3ce15ea8f698e65bfbc3082b8c841a0acdad3115ea9c277a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100745, "scanner": "repobility-docker", "fingerprint": "002b87dae1db04358922f11b228913f5625cc8e51362849080acf99822fbb162", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|002b87dae1db04358922f11b228913f5625cc8e51362849080acf99822fbb162"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100744, "scanner": "repobility-docker", "fingerprint": "e53740af4d8e7df180369740e433e4849b42f499a833445214b842f92efc6a14", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e53740af4d8e7df180369740e433e4849b42f499a833445214b842f92efc6a14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100743, "scanner": "repobility-docker", "fingerprint": "5ce8cf8e8500270a4695825d636a59a1bc5ae595d3f26f3b9b661f19b32d24ec", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ce8cf8e8500270a4695825d636a59a1bc5ae595d3f26f3b9b661f19b32d24ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100740, "scanner": "repobility-docker", "fingerprint": "42bdadf90b2ea72793273ea2f548c8c26391b9ebf64ae9c35e269e6f2255557d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42bdadf90b2ea72793273ea2f548c8c26391b9ebf64ae9c35e269e6f2255557d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100739, "scanner": "repobility-docker", "fingerprint": "10677c7b219506da6ca93532b74e6365422278f801745e3ffd341219d59500db", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10677c7b219506da6ca93532b74e6365422278f801745e3ffd341219d59500db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sudoers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100738, "scanner": "repobility-docker", "fingerprint": "88409e783e23c0aa304e7ad6fe0ce5a1a414a040a790387195f95b724aa68ad8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|88409e783e23c0aa304e7ad6fe0ce5a1a414a040a790387195f95b724aa68ad8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sudoers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100737, "scanner": "repobility-docker", "fingerprint": "213641af96fa2998ea2de708c42fe9d8b64cb582fb43f976d2ae4f30b6e5c6e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|213641af96fa2998ea2de708c42fe9d8b64cb582fb43f976d2ae4f30b6e5c6e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/struts/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100734, "scanner": "repobility-docker", "fingerprint": "e567e3436d10a1f77a9371f7592c48597a114280c3176afb0c2dfdd846b6e82d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e567e3436d10a1f77a9371f7592c48597a114280c3176afb0c2dfdd846b6e82d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/struts/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100733, "scanner": "repobility-docker", "fingerprint": "52e433ff894612aae29d61267c5c85895b24441550bd3dc7e5557b9ae9eebe04", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52e433ff894612aae29d61267c5c85895b24441550bd3dc7e5557b9ae9eebe04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/strongswan/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100730, "scanner": "repobility-docker", "fingerprint": "8b634c354484e6d6fa2504cff5b1a25fc8d1fb4871be7331de7dcf8960e09ed8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b634c354484e6d6fa2504cff5b1a25fc8d1fb4871be7331de7dcf8960e09ed8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/strongswan/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100729, "scanner": "repobility-docker", "fingerprint": "ce31f4bfb5eeae88d6bda5780957c67bf575fe2a52da26c3291286d5f2a88fa8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce31f4bfb5eeae88d6bda5780957c67bf575fe2a52da26c3291286d5f2a88fa8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stringtemplate4/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100728, "scanner": "repobility-docker", "fingerprint": "e4a471fd133dcf3df82584c2575559e14e0aa95b1b21f151bd67079fcf49a188", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4a471fd133dcf3df82584c2575559e14e0aa95b1b21f151bd67079fcf49a188"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stringtemplate4/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100727, "scanner": "repobility-docker", "fingerprint": "03c38e7cead93f3bc01a74fa84ddba6c280fe03b8ccaa9b3c380c0b0d98d7e20", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03c38e7cead93f3bc01a74fa84ddba6c280fe03b8ccaa9b3c380c0b0d98d7e20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100724, "scanner": "repobility-docker", "fingerprint": "3dd209368cee596068227ad570ad599772694a0c5514dd8845651fda79d1b8c6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dd209368cee596068227ad570ad599772694a0c5514dd8845651fda79d1b8c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100723, "scanner": "repobility-docker", "fingerprint": "c909770a6d68a43a4ca8550e3ca6407cf0f68c39831183428f65d07baa04cb34", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c909770a6d68a43a4ca8550e3ca6407cf0f68c39831183428f65d07baa04cb34"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100716, "scanner": "repobility-docker", "fingerprint": "004abb9b658d07a9363d8c533445a0734a885b189300baa23fdcc1a402328d7a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|004abb9b658d07a9363d8c533445a0734a885b189300baa23fdcc1a402328d7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100715, "scanner": "repobility-docker", "fingerprint": "c4613dd8706f9828b17db5d0a85e6e4b25705b1cbbeba574c470700db7018bc2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c4613dd8706f9828b17db5d0a85e6e4b25705b1cbbeba574c470700db7018bc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/starnix-netlink/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100714, "scanner": "repobility-docker", "fingerprint": "913624a71465581add68dcb4085794388a8a08b5ea302d558c93fb28dd5fec2f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|913624a71465581add68dcb4085794388a8a08b5ea302d558c93fb28dd5fec2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/starnix-netlink/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100713, "scanner": "repobility-docker", "fingerprint": "2d6937c7ddf2431925a7a91ba8ca57925ac110c13ba21789f88edf073ce8e778", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d6937c7ddf2431925a7a91ba8ca57925ac110c13ba21789f88edf073ce8e778"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/starlark-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100712, "scanner": "repobility-docker", "fingerprint": "761f840c5af2fc2210053bc86d0e7d06b0b22a83a5dfe938e0bb47e7b08b2385", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|761f840c5af2fc2210053bc86d0e7d06b0b22a83a5dfe938e0bb47e7b08b2385"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stack_data/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100711, "scanner": "repobility-docker", "fingerprint": "cbd1895873de17d79dca94e2dabecfc295858be92350dc5129eb56740bff610f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cbd1895873de17d79dca94e2dabecfc295858be92350dc5129eb56740bff610f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stack_data/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100710, "scanner": "repobility-docker", "fingerprint": "e7e45802bbd2ba6412943f2e8b2a9bb6c95dd7f385d4f945a1678d119dd22bb9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e7e45802bbd2ba6412943f2e8b2a9bb6c95dd7f385d4f945a1678d119dd22bb9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlparse/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100709, "scanner": "repobility-docker", "fingerprint": "b7448fd641de394638eb52a83cddb9eecd34e708c9dcfd86227de4eb7e4f5aa0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7448fd641de394638eb52a83cddb9eecd34e708c9dcfd86227de4eb7e4f5aa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlparse/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100708, "scanner": "repobility-docker", "fingerprint": "fa52d7e5f6025a55fd636fb914e1f542e2dcfe072a7b5ab760404abc2e261c17", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fa52d7e5f6025a55fd636fb914e1f542e2dcfe072a7b5ab760404abc2e261c17"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100705, "scanner": "repobility-docker", "fingerprint": "991d75c9a50877c1d83520b887890f11076cddc9abb3400319ebc424d43be81e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|991d75c9a50877c1d83520b887890f11076cddc9abb3400319ebc424d43be81e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100704, "scanner": "repobility-docker", "fingerprint": "e3857c059bb249c95883a852ba708258d310fb436e3a2b5b540b560ff7d3a2c4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e3857c059bb249c95883a852ba708258d310fb436e3a2b5b540b560ff7d3a2c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite-jdbc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100703, "scanner": "repobility-docker", "fingerprint": "f6fe43a986b6e688bb3f9aa50a8b9d077ab2f19fee93364e12cd3e6ed26218b1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6fe43a986b6e688bb3f9aa50a8b9d077ab2f19fee93364e12cd3e6ed26218b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite-jdbc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100702, "scanner": "repobility-docker", "fingerprint": "96ddd5ed685deda7a8988e2c87f1d2f664c1f0be8785f33b4c41fbfa846b6679", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96ddd5ed685deda7a8988e2c87f1d2f664c1f0be8785f33b4c41fbfa846b6679"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlalchemy_jsonfield/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100701, "scanner": "repobility-docker", "fingerprint": "a0779711ac64aaa6c1b5f7a90e12d64cd3e6af3bbb237d18a0f001634e3fef77", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a0779711ac64aaa6c1b5f7a90e12d64cd3e6af3bbb237d18a0f001634e3fef77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlalchemy_jsonfield/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100700, "scanner": "repobility-docker", "fingerprint": "d36d6286548dcc0c2c7ea355b68d54a7037d62831d260ae6cb8f3ae77b6c2990", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d36d6286548dcc0c2c7ea355b68d54a7037d62831d260ae6cb8f3ae77b6c2990"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlalchemy-utils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100699, "scanner": "repobility-docker", "fingerprint": "1891ade53779d900ab2e8bf83d63a8e577fbb42a246a3bffdaf66a1dc092d6e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1891ade53779d900ab2e8bf83d63a8e577fbb42a246a3bffdaf66a1dc092d6e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlalchemy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100698, "scanner": "repobility-docker", "fingerprint": "eb3baaac5b90233b1f95eb41508fdc35d0a73b40f806bf96ccbdb655a1c7c051", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb3baaac5b90233b1f95eb41508fdc35d0a73b40f806bf96ccbdb655a1c7c051"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlalchemy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100697, "scanner": "repobility-docker", "fingerprint": "f194c1f058c6129203bc3b32a45a25f48311dee83a0e0926aa9d1c7b896f1fc5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f194c1f058c6129203bc3b32a45a25f48311dee83a0e0926aa9d1c7b896f1fc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sql-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100694, "scanner": "repobility-docker", "fingerprint": "7e9c63d9e99d35f7540147b156feb1e1ed32200b3cb2861215cc8a47515ea7f9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e9c63d9e99d35f7540147b156feb1e1ed32200b3cb2861215cc8a47515ea7f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sql-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100693, "scanner": "repobility-docker", "fingerprint": "f0b681ffbcf040505402069bbf9f2f622c11a09c20107ff372713a4ec56220f7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0b681ffbcf040505402069bbf9f2f622c11a09c20107ff372713a4ec56220f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-webflow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100690, "scanner": "repobility-docker", "fingerprint": "836c06b4a8151f1bbbadbe0a1e86a133a987c5e538ff1ef8f27c223a9b51db40", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|836c06b4a8151f1bbbadbe0a1e86a133a987c5e538ff1ef8f27c223a9b51db40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-webflow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100689, "scanner": "repobility-docker", "fingerprint": "b56db8c80414ff3e262f97e07a576c0b7f47057c95507ecbbc07cc697071f8b7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b56db8c80414ff3e262f97e07a576c0b7f47057c95507ecbbc07cc697071f8b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-shell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100686, "scanner": "repobility-docker", "fingerprint": "8186cc9335e11f11bd85c81270dae30d8c2e37fd59175b6a2328ad26a8565318", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8186cc9335e11f11bd85c81270dae30d8c2e37fd59175b6a2328ad26a8565318"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-shell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100685, "scanner": "repobility-docker", "fingerprint": "033bd91633f25c9005a8650c9458d154a5380dafec275e6a845a644226e10091", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|033bd91633f25c9005a8650c9458d154a5380dafec275e6a845a644226e10091"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-security/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100682, "scanner": "repobility-docker", "fingerprint": "85d6f51c48174211e415f5ed74602af81f74318d6c3b1b95bf704fedb5969e60", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|85d6f51c48174211e415f5ed74602af81f74318d6c3b1b95bf704fedb5969e60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-security/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100681, "scanner": "repobility-docker", "fingerprint": "dce077dd07421a3a40e010dbabb74e6bb37f605f1b3c0701646887d82caf9052", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dce077dd07421a3a40e010dbabb74e6bb37f605f1b3c0701646887d82caf9052"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-retry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100678, "scanner": "repobility-docker", "fingerprint": "76044cbfef478a145ba8c305737364a17bcdc1c3ce19031e0842932a3fb73495", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76044cbfef478a145ba8c305737364a17bcdc1c3ce19031e0842932a3fb73495"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-retry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100677, "scanner": "repobility-docker", "fingerprint": "4d3e71d2d25b37c5c517ee10687f1d5c975ed8d68a7caa7ab5aa7daea59c75ad", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d3e71d2d25b37c5c517ee10687f1d5c975ed8d68a7caa7ab5aa7daea59c75ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-ldap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100674, "scanner": "repobility-docker", "fingerprint": "8bc19d081d90b24d51b717683b5ce1811929b3794b54b16740c24d5fd075a7d3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bc19d081d90b24d51b717683b5ce1811929b3794b54b16740c24d5fd075a7d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-integration/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100671, "scanner": "repobility-docker", "fingerprint": "6e18e495744c80c0bd4e38a8a5a2147666e517b24205926ba143026d2e3d0bd0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e18e495744c80c0bd4e38a8a5a2147666e517b24205926ba143026d2e3d0bd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-integration/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100670, "scanner": "repobility-docker", "fingerprint": "78b9596a3b714d9bac227d6bbde19cf8c3ec763b8bdebe20fbf3cb69475a0a5b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78b9596a3b714d9bac227d6bbde19cf8c3ec763b8bdebe20fbf3cb69475a0a5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-framework/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 100669, "scanner": "repobility-docker", "fingerprint": "af179a95cfa2b26cf7a051507440223dd0a610791ffcf05fe72b2ae1cb388053", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|af179a95cfa2b26cf7a051507440223dd0a610791ffcf05fe72b2ae1cb388053", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-framework/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100666, "scanner": "repobility-docker", "fingerprint": "538acf44583023758b95ed7aae24724123a7c6be625a03a30a1bef34bc7b1003", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|538acf44583023758b95ed7aae24724123a7c6be625a03a30a1bef34bc7b1003"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-framework/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100665, "scanner": "repobility-docker", "fingerprint": "8a70e238d5f320da1dbf016d43e36f67c626544670599533ce13f42f8d94d62f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a70e238d5f320da1dbf016d43e36f67c626544670599533ce13f42f8d94d62f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-redis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100662, "scanner": "repobility-docker", "fingerprint": "5cccc5ebaf3fb7abc3f7956f7d2bd24918e9b6bc846abf3e88ff89466b6125e8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5cccc5ebaf3fb7abc3f7956f7d2bd24918e9b6bc846abf3e88ff89466b6125e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-redis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100661, "scanner": "repobility-docker", "fingerprint": "5f1b64b3b04925fea2cb7c271a97a2311856e1a12c3953234fd20bc7e544fec0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f1b64b3b04925fea2cb7c271a97a2311856e1a12c3953234fd20bc7e544fec0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-mongodb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100658, "scanner": "repobility-docker", "fingerprint": "738fb2d07ab5e87dd306ef9aa1cd39f4abdd0f98b74ac20fce1c3b264e1b7432", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|738fb2d07ab5e87dd306ef9aa1cd39f4abdd0f98b74ac20fce1c3b264e1b7432"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-mongodb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100657, "scanner": "repobility-docker", "fingerprint": "f4d27e31d5357e9b1bbc501c0f1d6bf257373b704d295905f4a39544cb8bfe07", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f4d27e31d5357e9b1bbc501c0f1d6bf257373b704d295905f4a39544cb8bfe07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-keyvalue/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100654, "scanner": "repobility-docker", "fingerprint": "a5acda6f25c63a181118cfd1498c06fa5fc1f8b405f25faf94a823c55cc86f04", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5acda6f25c63a181118cfd1498c06fa5fc1f8b405f25faf94a823c55cc86f04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-keyvalue/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100653, "scanner": "repobility-docker", "fingerprint": "641a0cb9f2be91aa72e46052b394a193031b63d8317a7e01a7253f39c3d1d038", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|641a0cb9f2be91aa72e46052b394a193031b63d8317a7e01a7253f39c3d1d038"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-jpa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100650, "scanner": "repobility-docker", "fingerprint": "aa6e4b6fd6c813be89576fab740c89588f33e2ca295d87760451e763246033c6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa6e4b6fd6c813be89576fab740c89588f33e2ca295d87760451e763246033c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-jpa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100649, "scanner": "repobility-docker", "fingerprint": "48b7680edaf5280a2a8a907db6a15fb049bb9a3736a5765ed9e083c5ec72ab72", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48b7680edaf5280a2a8a907db6a15fb049bb9a3736a5765ed9e083c5ec72ab72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-stream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100646, "scanner": "repobility-docker", "fingerprint": "6a4c8050e0b3dead53edaf75999efb26cdf4b04d78cd105cdc2fb16381f45669", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a4c8050e0b3dead53edaf75999efb26cdf4b04d78cd105cdc2fb16381f45669"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-stream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100645, "scanner": "repobility-docker", "fingerprint": "28f20550abd24950a81544378d093024a6c07ae02c816aca71215e2e582fb46e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28f20550abd24950a81544378d093024a6c07ae02c816aca71215e2e582fb46e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-sleuth-brave/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100642, "scanner": "repobility-docker", "fingerprint": "54a779e5142004e3ed1dfd73510ac62b3c456ba90b9fb4730a1a4075c89cd4d8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54a779e5142004e3ed1dfd73510ac62b3c456ba90b9fb4730a1a4075c89cd4d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-netflix/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100641, "scanner": "repobility-docker", "fingerprint": "af7a44bf78d3157c01cce76dc82e733664bbf2bf5c8c82c5b3405038f6a9442b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|af7a44bf78d3157c01cce76dc82e733664bbf2bf5c8c82c5b3405038f6a9442b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-netflix/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100640, "scanner": "repobility-docker", "fingerprint": "d996e563aa2d1347533747df93dad0b22799736eeb974983217f6f1bd06abf3d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d996e563aa2d1347533747df93dad0b22799736eeb974983217f6f1bd06abf3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-config/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100639, "scanner": "repobility-docker", "fingerprint": "d3fe387b6eadd9e79d8a38280b4b0231652a145ed4da81e7a98394b8459acde1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3fe387b6eadd9e79d8a38280b4b0231652a145ed4da81e7a98394b8459acde1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-config/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100638, "scanner": "repobility-docker", "fingerprint": "28355394a58ba6408d3188f04d2422f58a36e39d3afcd37de65758fbce7d86cc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28355394a58ba6408d3188f04d2422f58a36e39d3afcd37de65758fbce7d86cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-commons/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100635, "scanner": "repobility-docker", "fingerprint": "03c95d4d0dd116031ca569c33e5c906ff6a6cd5f6de87ff714a4db9d69b58985", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03c95d4d0dd116031ca569c33e5c906ff6a6cd5f6de87ff714a4db9d69b58985"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-commons/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100634, "scanner": "repobility-docker", "fingerprint": "8bf4388f13a6ec60ab977de036e48195f2fba5571f99c0bcec4d9ef7ddd85325", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bf4388f13a6ec60ab977de036e48195f2fba5571f99c0bcec4d9ef7ddd85325"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-boot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 100633, "scanner": "repobility-docker", "fingerprint": "5462c27f898364c0c18a12f153fec03b6478756504de15e0efeb4dfc06b8fa48", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5462c27f898364c0c18a12f153fec03b6478756504de15e0efeb4dfc06b8fa48", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-boot/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100630, "scanner": "repobility-docker", "fingerprint": "ec3fe54d4fe24a716512ffd30ebd18d19beec92d1f47e6b1d7686813a1f35ec2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ec3fe54d4fe24a716512ffd30ebd18d19beec92d1f47e6b1d7686813a1f35ec2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-boot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100629, "scanner": "repobility-docker", "fingerprint": "7664fe9b1f87770477de73d92f6ceeade9c47e88da44fd4ab7d9b01b73c82ae6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7664fe9b1f87770477de73d92f6ceeade9c47e88da44fd4ab7d9b01b73c82ae6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-amqp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100626, "scanner": "repobility-docker", "fingerprint": "721af3f78db8770d9a4e148804038b4c9e84693aa4a3f1db2dc66e949532b317", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|721af3f78db8770d9a4e148804038b4c9e84693aa4a3f1db2dc66e949532b317"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spotify-json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100623, "scanner": "repobility-docker", "fingerprint": "f2cb9ff449547a928ae7caed7f6f982327009f3ba02ec45694be5f6657d1ba99", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2cb9ff449547a928ae7caed7f6f982327009f3ba02ec45694be5f6657d1ba99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spotify-json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100622, "scanner": "repobility-docker", "fingerprint": "e57d0d892ef8f52e538e91970b62b440d757358d8c302924992e98207b03c542", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e57d0d892ef8f52e538e91970b62b440d757358d8c302924992e98207b03c542"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-tools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100619, "scanner": "repobility-docker", "fingerprint": "f29d2cd5619c8ad54756e84fe62a1d32be867a306345e8793f0db6cfbce76371", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f29d2cd5619c8ad54756e84fe62a1d32be867a306345e8793f0db6cfbce76371"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-cross/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100616, "scanner": "repobility-docker", "fingerprint": "d0f349ebf62fc05fbf5655d4ec650e03c57fe74dddbddc244b9c9f7317a91e4e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0f349ebf62fc05fbf5655d4ec650e03c57fe74dddbddc244b9c9f7317a91e4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-cross/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100615, "scanner": "repobility-docker", "fingerprint": "1249cb6e8e4e931991e18a656d5cf8f3447c6fb7c67b5462d43e9b894953973c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1249cb6e8e4e931991e18a656d5cf8f3447c6fb7c67b5462d43e9b894953973c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey-ufi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100613, "scanner": "repobility-docker", "fingerprint": "3f85d47e502d24a24b618a0f11f45c372cebb3d619c10b7550c766c874efd1fc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f85d47e502d24a24b618a0f11f45c372cebb3d619c10b7550c766c874efd1fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100610, "scanner": "repobility-docker", "fingerprint": "90200800878fb76ac74b5897ccfd38eb38285365fd2caf4476982f00507812f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90200800878fb76ac74b5897ccfd38eb38285365fd2caf4476982f00507812f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100609, "scanner": "repobility-docker", "fingerprint": "c00f7cd22c4bfee0fb26d6c471c0a0a97a2f3247dcf764b2b3c88ec9326329c8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c00f7cd22c4bfee0fb26d6c471c0a0a97a2f3247dcf764b2b3c88ec9326329c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spicy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100608, "scanner": "repobility-docker", "fingerprint": "3dd2289d31f2e6967737fb0d5351a23729ad9132fe6eecfe91125e73c4b4faaa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dd2289d31f2e6967737fb0d5351a23729ad9132fe6eecfe91125e73c4b4faaa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spicy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100607, "scanner": "repobility-docker", "fingerprint": "29d25a1898d702ab30a5400b93b47b14f0d4e25cd47d7ee451b3e5f1095fcf6b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|29d25a1898d702ab30a5400b93b47b14f0d4e25cd47d7ee451b3e5f1095fcf6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spice-usbredir/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100603, "scanner": "repobility-docker", "fingerprint": "6aa847b39f640e53985f7337b3432f6e26d3bd357720ec9e093385cc5d21a8b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6aa847b39f640e53985f7337b3432f6e26d3bd357720ec9e093385cc5d21a8b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spice-usbredir/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100602, "scanner": "repobility-docker", "fingerprint": "31e9eabc958433709e05b8bce4faff6ab604bd53946005861fc7bab3386419f9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31e9eabc958433709e05b8bce4faff6ab604bd53946005861fc7bab3386419f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/speex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100599, "scanner": "repobility-docker", "fingerprint": "22fc32a3c05ca851f23e9556e9a887d9393f9acab35c6e97ee3edeb38f26156c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22fc32a3c05ca851f23e9556e9a887d9393f9acab35c6e97ee3edeb38f26156c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/speex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100598, "scanner": "repobility-docker", "fingerprint": "690aae85a087757c72a656ab661104d355045d0afc359c15761925445e2ff1ae", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|690aae85a087757c72a656ab661104d355045d0afc359c15761925445e2ff1ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdm-rs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100597, "scanner": "repobility-docker", "fingerprint": "bbc7e50ec6d5a8c64522d3c892485ca90f85eaa5f761ca3da455ade911ba210b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bbc7e50ec6d5a8c64522d3c892485ca90f85eaa5f761ca3da455ade911ba210b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdm-rs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100596, "scanner": "repobility-docker", "fingerprint": "099b59c96ef77032863bc8e030a2b0475e01dce020b2c35900531801e3430906", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|099b59c96ef77032863bc8e030a2b0475e01dce020b2c35900531801e3430906"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdlog/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100593, "scanner": "repobility-docker", "fingerprint": "cfd312dd0e802bab401d0f23698f1d494bb6c3fb0a3473f5f76018bd78ac56d2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cfd312dd0e802bab401d0f23698f1d494bb6c3fb0a3473f5f76018bd78ac56d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdlog/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100592, "scanner": "repobility-docker", "fingerprint": "4d8f9d41ae8d699a26f90a30ed9c5081718063ff121b7707baafde27dd6d0ead", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d8f9d41ae8d699a26f90a30ed9c5081718063ff121b7707baafde27dd6d0ead"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100589, "scanner": "repobility-docker", "fingerprint": "08b444f9ddd5f51e980f323f6f1f040af09b6fb04f5193aaebc2c61ea9686604", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08b444f9ddd5f51e980f323f6f1f040af09b6fb04f5193aaebc2c61ea9686604"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100588, "scanner": "repobility-docker", "fingerprint": "eee40449d3f33a9247345acc4827773f5c4c1867d993405cb3aa038c7e361475", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eee40449d3f33a9247345acc4827773f5c4c1867d993405cb3aa038c7e361475"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spatial4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100587, "scanner": "repobility-docker", "fingerprint": "7f544996a8fcf449b29ac86da18ebe0f96855ee49300a5b1e15d6e0b3ec41e9d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f544996a8fcf449b29ac86da18ebe0f96855ee49300a5b1e15d6e0b3ec41e9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spatial4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100586, "scanner": "repobility-docker", "fingerprint": "ae15d7d7ae93b99cd2013aa76de0b805141cce8f06b6dccf5165968f2a0d5ff5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae15d7d7ae93b99cd2013aa76de0b805141cce8f06b6dccf5165968f2a0d5ff5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/soupsieve/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100584, "scanner": "repobility-docker", "fingerprint": "51566b78c11055a27f4c712c63278e3a0578c895263d084d6660a27c46f9a258", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51566b78c11055a27f4c712c63278e3a0578c895263d084d6660a27c46f9a258"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/soupsieve/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100583, "scanner": "repobility-docker", "fingerprint": "a95739621d19a08e31e69b66aa310597d016960da4738c54f132a0a9dabda7b0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a95739621d19a08e31e69b66aa310597d016960da4738c54f132a0a9dabda7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sound-open-firmware/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100582, "scanner": "repobility-docker", "fingerprint": "255e67a9381d3730d48eb5b042fb7eaa83c7a56ef71c71e59fe8fff433c76957", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|255e67a9381d3730d48eb5b042fb7eaa83c7a56ef71c71e59fe8fff433c76957"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/solidity/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100579, "scanner": "repobility-docker", "fingerprint": "8208f94d5356130eaf3d1f44c1eb916a63efb8f16f0dd64250ae94607826ff4e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8208f94d5356130eaf3d1f44c1eb916a63efb8f16f0dd64250ae94607826ff4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100578, "scanner": "repobility-docker", "fingerprint": "8fbcf5bf052d09db7165debf6cacb0c082208e579277610f4c004fda23de006b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fbcf5bf052d09db7165debf6cacb0c082208e579277610f4c004fda23de006b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100577, "scanner": "repobility-docker", "fingerprint": "98d4b93a2d8afec89ded83012743619072f7481a068f0e113fa5bca05fb2a1dd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98d4b93a2d8afec89ded83012743619072f7481a068f0e113fa5bca05fb2a1dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100574, "scanner": "repobility-docker", "fingerprint": "7a3413ee1951d9cc5282146b50b71d6fef280b8389c55af6d6605f2a611f22e5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a3413ee1951d9cc5282146b50b71d6fef280b8389c55af6d6605f2a611f22e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100573, "scanner": "repobility-docker", "fingerprint": "bcf49a341155b47ca7dc9e38b0f1ed4cc7231c21a8da7f19cc568bf39b16f90c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bcf49a341155b47ca7dc9e38b0f1ed4cc7231c21a8da7f19cc568bf39b16f90c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snakeyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100572, "scanner": "repobility-docker", "fingerprint": "c9c512b159f49fe325fd8f55a368688bb7286b9e74123ef427a3fdc793807ed1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9c512b159f49fe325fd8f55a368688bb7286b9e74123ef427a3fdc793807ed1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snakeyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100571, "scanner": "repobility-docker", "fingerprint": "f5ac78c903ad52293aeabced9484edc6c6ba141bf586092642ba5be5dd71c506", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f5ac78c903ad52293aeabced9484edc6c6ba141bf586092642ba5be5dd71c506"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/smt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100570, "scanner": "repobility-docker", "fingerprint": "f3a9550931bcbd3f5453cfa5ee3e39fd99ee3a63a7381067016430b05b5b70a7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3a9550931bcbd3f5453cfa5ee3e39fd99ee3a63a7381067016430b05b5b70a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/smt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100569, "scanner": "repobility-docker", "fingerprint": "18c6ea52b3cec1ab9894ec7293132a6467df6c2b2d7af68d3d87d1a663da3801", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18c6ea52b3cec1ab9894ec7293132a6467df6c2b2d7af68d3d87d1a663da3801"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/smart_open/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100568, "scanner": "repobility-docker", "fingerprint": "85f7567be4532bd0559e01b73355980528ea5e217f3872adb3234a1e52e00002", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|85f7567be4532bd0559e01b73355980528ea5e217f3872adb3234a1e52e00002"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/smart_open/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100567, "scanner": "repobility-docker", "fingerprint": "b4b7e2da54aa041dde5cc7c3a6d00ffe85d0cbaa8a2ef386728bcf0a9ae0cc05", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4b7e2da54aa041dde5cc7c3a6d00ffe85d0cbaa8a2ef386728bcf0a9ae0cc05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/slf4j-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100566, "scanner": "repobility-docker", "fingerprint": "a14ca5117e6f478107b8417d9d6332c787dcb583dd2b4419f2c5a074cf270e30", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a14ca5117e6f478107b8417d9d6332c787dcb583dd2b4419f2c5a074cf270e30"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/slf4j-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100565, "scanner": "repobility-docker", "fingerprint": "6b4249f21f230182f2395431799ddbb75449cf17834fc7d397a36528e946eef1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b4249f21f230182f2395431799ddbb75449cf17834fc7d397a36528e946eef1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sleuthkit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100562, "scanner": "repobility-docker", "fingerprint": "52c99ef2f7394ea6a7b660127757d0d9d1de7c9328838fd5423e992172e7bc5b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52c99ef2f7394ea6a7b660127757d0d9d1de7c9328838fd5423e992172e7bc5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sleuthkit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100561, "scanner": "repobility-docker", "fingerprint": "14a4d579779f08a08792987dec3e66943f4b4accd933968dbffdab6d187f7fc4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|14a4d579779f08a08792987dec3e66943f4b4accd933968dbffdab6d187f7fc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skipper/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100560, "scanner": "repobility-docker", "fingerprint": "de0fd8dbde097938b824c94af85d5cdf682e540b4124a07b0d52a498641c094d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de0fd8dbde097938b824c94af85d5cdf682e540b4124a07b0d52a498641c094d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skipper/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100559, "scanner": "repobility-docker", "fingerprint": "cb8cd8cb7a0df2598eb90634b99d82c75a1a63e3d6974e5204d2886068709a03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb8cd8cb7a0df2598eb90634b99d82c75a1a63e3d6974e5204d2886068709a03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100558, "scanner": "repobility-docker", "fingerprint": "302ade1ad3056144e91462e92e810a07845037897a5fb7b8151fcaefa960dec7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|302ade1ad3056144e91462e92e810a07845037897a5fb7b8151fcaefa960dec7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100557, "scanner": "repobility-docker", "fingerprint": "a215674fe46da905d4d7775c8810ee58771311307cbfa29114904377e70b1521", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a215674fe46da905d4d7775c8810ee58771311307cbfa29114904377e70b1521"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sketches-core/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100556, "scanner": "repobility-docker", "fingerprint": "635210d8ebf7613cc9282ffd1164d5428c1c0c5f58cd28dfbbabdb7876300b71", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|635210d8ebf7613cc9282ffd1164d5428c1c0c5f58cd28dfbbabdb7876300b71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100555, "scanner": "repobility-docker", "fingerprint": "f7caf790d74b548e28ccc2d67e5ecec14481d3a91db27ce20ea83dba23cd5ba6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f7caf790d74b548e28ccc2d67e5ecec14481d3a91db27ce20ea83dba23cd5ba6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/skcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100554, "scanner": "repobility-docker", "fingerprint": "e74343f3ed5747b98df4de07b33c8d337265133c18498bbaba0d5139652b4356", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e74343f3ed5747b98df4de07b33c8d337265133c18498bbaba0d5139652b4356"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/six/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100553, "scanner": "repobility-docker", "fingerprint": "e34a315de81653d6cd6af2287240c5eb8335b04a8e45d2aa7de64696b867d698", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e34a315de81653d6cd6af2287240c5eb8335b04a8e45d2aa7de64696b867d698"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/six/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100552, "scanner": "repobility-docker", "fingerprint": "a5719896ef743b340c60a2ac0634236f1a80a5258ddd002f5e63e8406c8d1a25", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5719896ef743b340c60a2ac0634236f1a80a5258ddd002f5e63e8406c8d1a25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simplejson/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100551, "scanner": "repobility-docker", "fingerprint": "dae4fc7a4b5add6d0ce12f34d3abe930d3eda806bb5d1d7df737f208bf489935", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dae4fc7a4b5add6d0ce12f34d3abe930d3eda806bb5d1d7df737f208bf489935"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdutf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100548, "scanner": "repobility-docker", "fingerprint": "d9c2799bacc0866b20d7b54ea9a3b34e6a1e7cdb373b25ec35a09d26340136d1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d9c2799bacc0866b20d7b54ea9a3b34e6a1e7cdb373b25ec35a09d26340136d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdutf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100547, "scanner": "repobility-docker", "fingerprint": "a3d018edc90e7d150b089e2044949fed6ecfa00cac4d544cf858768015cd79d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a3d018edc90e7d150b089e2044949fed6ecfa00cac4d544cf858768015cd79d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100544, "scanner": "repobility-docker", "fingerprint": "fad0d45a0a0c57e0d45b9a9f98fc48d6f208f6269ceffbb8f43383a10e084e05", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fad0d45a0a0c57e0d45b9a9f98fc48d6f208f6269ceffbb8f43383a10e084e05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100543, "scanner": "repobility-docker", "fingerprint": "acab74181406a01f8e8c23564a917b6391334e8eae98863193bde01751a8234a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|acab74181406a01f8e8c23564a917b6391334e8eae98863193bde01751a8234a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100540, "scanner": "repobility-docker", "fingerprint": "76da8a66279a516807d2585053bd5fc08bad7b54cf977ea886437f70968f045c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76da8a66279a516807d2585053bd5fc08bad7b54cf977ea886437f70968f045c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100539, "scanner": "repobility-docker", "fingerprint": "0b19549f0a9676b79a041cfd486d750c781cf19f17b2ac8505dc7c46a8b52fa6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b19549f0a9676b79a041cfd486d750c781cf19f17b2ac8505dc7c46a8b52fa6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100538, "scanner": "repobility-docker", "fingerprint": "9ef1871207ca7c701bc9386e1a581cbc8f4e5f095f1e42f8d360a951889063a3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ef1871207ca7c701bc9386e1a581cbc8f4e5f095f1e42f8d360a951889063a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100537, "scanner": "repobility-docker", "fingerprint": "45a9bd3fbf39c425ac1b3d5165643cea7be672bb98e95337218146b344db5f41", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45a9bd3fbf39c425ac1b3d5165643cea7be672bb98e95337218146b344db5f41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100536, "scanner": "repobility-docker", "fingerprint": "d8a7716c215273abadce3797c99f5f707053f93c8d59824af5d7dce26e3fa23c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8a7716c215273abadce3797c99f5f707053f93c8d59824af5d7dce26e3fa23c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100535, "scanner": "repobility-docker", "fingerprint": "333fb924659ad34e8cb19b831ccd4460db77e1045d84df495240e71a00585f0f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|333fb924659ad34e8cb19b831ccd4460db77e1045d84df495240e71a00585f0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100534, "scanner": "repobility-docker", "fingerprint": "3feb70af1723bfba61eddadcdb0e6028056060c6f0167604fde50c0ffc9bd20f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3feb70af1723bfba61eddadcdb0e6028056060c6f0167604fde50c0ffc9bd20f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sigstore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100533, "scanner": "repobility-docker", "fingerprint": "dc4abfbbcb2e5a721ef2220362a5140b7e57d727b6776e87aba6f15f657596b4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc4abfbbcb2e5a721ef2220362a5140b7e57d727b6776e87aba6f15f657596b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sharp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100532, "scanner": "repobility-docker", "fingerprint": "ac4346f10e0db734873cd49428faa4e8daee2827abcc0ad9016d27f61161fcf2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac4346f10e0db734873cd49428faa4e8daee2827abcc0ad9016d27f61161fcf2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sharp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100531, "scanner": "repobility-docker", "fingerprint": "e548733c76c9cc197954c007607886be90a6181b3cc634780e050c88f273d289", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e548733c76c9cc197954c007607886be90a6181b3cc634780e050c88f273d289"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/shaderc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100528, "scanner": "repobility-docker", "fingerprint": "bfbe8f23613ac626cfc6bc06314fdb17b33c26194845f20214823fc39f4a22e0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bfbe8f23613ac626cfc6bc06314fdb17b33c26194845f20214823fc39f4a22e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/shaderc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100527, "scanner": "repobility-docker", "fingerprint": "e365fcf5ddbbc3bb6425e0d688c2f07c3318f0fbe8db4262839aa8b6464f1a9d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e365fcf5ddbbc3bb6425e0d688c2f07c3318f0fbe8db4262839aa8b6464f1a9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/setuptools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100525, "scanner": "repobility-docker", "fingerprint": "aecba7dfaeae05890b4701692a9b587c1870652903efbfbdc1fc6476adcefe4c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aecba7dfaeae05890b4701692a9b587c1870652903efbfbdc1fc6476adcefe4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/servo-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100524, "scanner": "repobility-docker", "fingerprint": "363a28fc1b58f4c0b0638691e65041d80c74daab42ce4b8067b1cea3031a289b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|363a28fc1b58f4c0b0638691e65041d80c74daab42ce4b8067b1cea3031a289b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/servo-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100523, "scanner": "repobility-docker", "fingerprint": "71020cdab1a6a15a58308478e3cbcf8bf2e4b19453d0a809d056f797062b2e3b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71020cdab1a6a15a58308478e3cbcf8bf2e4b19453d0a809d056f797062b2e3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/servo/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100522, "scanner": "repobility-docker", "fingerprint": "4f595669d1f7e26c5e2a86ea1575f837d8d99d949e96218a019b87b0ca83d660", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f595669d1f7e26c5e2a86ea1575f837d8d99d949e96218a019b87b0ca83d660"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/servo/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100521, "scanner": "repobility-docker", "fingerprint": "35d4cc3817ef1d3bc523553fc28fea2232fa63e0e708599f49ca0ac4b9ea8bfb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35d4cc3817ef1d3bc523553fc28fea2232fa63e0e708599f49ca0ac4b9ea8bfb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serenity/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100518, "scanner": "repobility-docker", "fingerprint": "a8e3fad4e2f3addd99ecea52993eeb8d7cfabb427b2f6d81d885169270f41b5b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8e3fad4e2f3addd99ecea52993eeb8d7cfabb427b2f6d81d885169270f41b5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_urlencoded/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100517, "scanner": "repobility-docker", "fingerprint": "4eff7e4560d25b0746c49a65279d82f97619010da6aaf261b3969d316543d161", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4eff7e4560d25b0746c49a65279d82f97619010da6aaf261b3969d316543d161"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_urlencoded/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100516, "scanner": "repobility-docker", "fingerprint": "65fe04b7ce96de6b4db1d0cf2425f2c9607eb7fe1ae92693e67e1798c659750d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|65fe04b7ce96de6b4db1d0cf2425f2c9607eb7fe1ae92693e67e1798c659750d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_urlencoded/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100515, "scanner": "repobility-docker", "fingerprint": "0476194fd2d8cdcc5e674f66d9382da69e7d93305c0320ad0eea38f1ec1addd9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0476194fd2d8cdcc5e674f66d9382da69e7d93305c0320ad0eea38f1ec1addd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_json/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100512, "scanner": "repobility-docker", "fingerprint": "476a8507ead01073a1510c5eff80ac7277ad3adcf27dde1930c6c657a920b806", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|476a8507ead01073a1510c5eff80ac7277ad3adcf27dde1930c6c657a920b806"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_json/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100511, "scanner": "repobility-docker", "fingerprint": "c4844d62c9d2dda74db54c4d4f083d822997b6a49ecaa24877e02e09e5bf34e7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c4844d62c9d2dda74db54c4d4f083d822997b6a49ecaa24877e02e09e5bf34e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde-yaml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100510, "scanner": "repobility-docker", "fingerprint": "34a382b70b2771a1ca493a55f290abc2e649766c1e26437cf9765b564b3108f6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|34a382b70b2771a1ca493a55f290abc2e649766c1e26437cf9765b564b3108f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde-yaml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100509, "scanner": "repobility-docker", "fingerprint": "5d50e183f07dfcd8a01609abe081b2e8d95f669e82460e78edb1926c333a4e32", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d50e183f07dfcd8a01609abe081b2e8d95f669e82460e78edb1926c333a4e32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sentencepiece/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100506, "scanner": "repobility-docker", "fingerprint": "5471b96474e019aa795be6bd68720a35b400e4a643354cfdf0580fdaae5f1037", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5471b96474e019aa795be6bd68720a35b400e4a643354cfdf0580fdaae5f1037"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sentencepiece/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100505, "scanner": "repobility-docker", "fingerprint": "bf0eb1cd18b1e0bc7a6f27c7c530270688bcda2d10c95f244265fa96418a3aee", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf0eb1cd18b1e0bc7a6f27c7c530270688bcda2d10c95f244265fa96418a3aee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/selinux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100503, "scanner": "repobility-docker", "fingerprint": "e5c7f2aa2e909477bc810a0bea4e51ed2234a578d7ff36f864a56cad6a145a63", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e5c7f2aa2e909477bc810a0bea4e51ed2234a578d7ff36f864a56cad6a145a63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/selinux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100502, "scanner": "repobility-docker", "fingerprint": "95a6db69e073841e690b5c6a7527bd798a2d9e5c26b3883b01ef56122ec92f0b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95a6db69e073841e690b5c6a7527bd798a2d9e5c26b3883b01ef56122ec92f0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scrypt/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100501, "scanner": "repobility-docker", "fingerprint": "1d2f52f0a7436df816af2e005372fb79072c1c1b91f2a98dddb7ce7faa4496ee", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d2f52f0a7436df816af2e005372fb79072c1c1b91f2a98dddb7ce7faa4496ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scorecard-web/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100500, "scanner": "repobility-docker", "fingerprint": "3581dde96c902e830a0d616daff6875844d6d874d374a1b8ebe7aaefce9309bd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3581dde96c902e830a0d616daff6875844d6d874d374a1b8ebe7aaefce9309bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scorecard-web/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100499, "scanner": "repobility-docker", "fingerprint": "084a369c8dfe0cfb81187a13b1a7d0a119e72f3d92ed20b201a10b1fea7e8e50", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|084a369c8dfe0cfb81187a13b1a7d0a119e72f3d92ed20b201a10b1fea7e8e50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100493, "scanner": "repobility-docker", "fingerprint": "6e9f80a4cfe3008455e952a899593751875ceeeac07432d4c4579ca9f1812b43", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e9f80a4cfe3008455e952a899593751875ceeeac07432d4c4579ca9f1812b43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scikit-learn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100490, "scanner": "repobility-docker", "fingerprint": "976c220a8f568980b4e8f5d4b253b378f0339540c6ba145d403f2de122819185", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|976c220a8f568980b4e8f5d4b253b378f0339540c6ba145d403f2de122819185"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scikit-learn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100489, "scanner": "repobility-docker", "fingerprint": "42b1a14d8a3b35c0a6d9ffe6b872254140fef3d700336f6fadaf53189971f7a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42b1a14d8a3b35c0a6d9ffe6b872254140fef3d700336f6fadaf53189971f7a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scapy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100488, "scanner": "repobility-docker", "fingerprint": "a72581d1317c41a9a2a31f2f0814d0875d3127f21365349c756f457273fb9101", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a72581d1317c41a9a2a31f2f0814d0875d3127f21365349c756f457273fb9101"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scapy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100487, "scanner": "repobility-docker", "fingerprint": "02628191e40207c4041d65746c0c9485eff12827e085e46ed2606de8546f510f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02628191e40207c4041d65746c0c9485eff12827e085e46ed2606de8546f510f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/samba/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100486, "scanner": "repobility-docker", "fingerprint": "73142f24bf0a0e3d95000ec53b35d69764c4458bf9b5c957522b6e65de3764c3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73142f24bf0a0e3d95000ec53b35d69764c4458bf9b5c957522b6e65de3764c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sacremoses/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100485, "scanner": "repobility-docker", "fingerprint": "b22059e2024f1043d3ffb163814a26e930bc459f76e3b4cfa2fa7828509ff86f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b22059e2024f1043d3ffb163814a26e930bc459f76e3b4cfa2fa7828509ff86f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sacremoses/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100484, "scanner": "repobility-docker", "fingerprint": "69f37d870ec636e819a8465ae95675a4e434e0cf48206315a463e16df755eea5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|69f37d870ec636e819a8465ae95675a4e434e0cf48206315a463e16df755eea5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2opc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100481, "scanner": "repobility-docker", "fingerprint": "9f23a68ff32cdaabec1220d654d57f0c9732eb33573a5846e4b51bade5913748", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f23a68ff32cdaabec1220d654d57f0c9732eb33573a5846e4b51bade5913748"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2opc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100480, "scanner": "repobility-docker", "fingerprint": "0d1d3f3c5054f6c12bbb7420f5fbd4044012abcc331dd5ee672253071f1df888", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0d1d3f3c5054f6c12bbb7420f5fbd4044012abcc331dd5ee672253071f1df888"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2geometry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100479, "scanner": "repobility-docker", "fingerprint": "65704b57c160d8737b9028efee5b1f8454e625918b308378e48ecebde94e2270", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|65704b57c160d8737b9028efee5b1f8454e625918b308378e48ecebde94e2270"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2geometry/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100478, "scanner": "repobility-docker", "fingerprint": "3905d8bca953daf4019985ac7eadc2090c9a1ff76735c051832fe88624564bdf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3905d8bca953daf4019985ac7eadc2090c9a1ff76735c051832fe88624564bdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2geometry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100477, "scanner": "repobility-docker", "fingerprint": "6c5818076db182cf26d3d2354ec6b9c7741494142db83fb1890350ef1ce1929f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c5818076db182cf26d3d2354ec6b9c7741494142db83fb1890350ef1ce1929f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ryu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100476, "scanner": "repobility-docker", "fingerprint": "026b2c46762c454c407782b6f45d3f2c65f8e7abb0a495c526fc484631822be2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|026b2c46762c454c407782b6f45d3f2c65f8e7abb0a495c526fc484631822be2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ryu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100475, "scanner": "repobility-docker", "fingerprint": "d365a2c52e6836a8b477c66ed15f0db745ac8ce96528af07c3aa8e169c68de7e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d365a2c52e6836a8b477c66ed15f0db745ac8ce96528af07c3aa8e169c68de7e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rxjava/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100474, "scanner": "repobility-docker", "fingerprint": "31c7759c81a8ee36de29e54890980e28d74bbb637f36baf7590ce29d01d2a837", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31c7759c81a8ee36de29e54890980e28d74bbb637f36baf7590ce29d01d2a837"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rustls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100471, "scanner": "repobility-docker", "fingerprint": "3b7f9ae2396f11733b102a1e80d1e003b89f73d119fe21ebfd32338b90770fdb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b7f9ae2396f11733b102a1e80d1e003b89f73d119fe21ebfd32338b90770fdb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rustls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100470, "scanner": "repobility-docker", "fingerprint": "d5f3268a36c21c088610d6033c96aee91415d8a2eea5bd4471c1ddaed770411c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5f3268a36c21c088610d6033c96aee91415d8a2eea5bd4471c1ddaed770411c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-semver-parser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100469, "scanner": "repobility-docker", "fingerprint": "35088d1d03a28f3642b518064483cad3488e28f5003f06dfade78789921c3743", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35088d1d03a28f3642b518064483cad3488e28f5003f06dfade78789921c3743"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-semver-parser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100468, "scanner": "repobility-docker", "fingerprint": "1c187eee04f06fe7ea8b037c9238669fa3e6bcd5aa6dd70ffd05a52c4157a26f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c187eee04f06fe7ea8b037c9238669fa3e6bcd5aa6dd70ffd05a52c4157a26f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-regex/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100467, "scanner": "repobility-docker", "fingerprint": "0a388a424ab25300fe468f14c6e5aa6a20a83b4ff09a3e419c3e8d07a62b67ae", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a388a424ab25300fe468f14c6e5aa6a20a83b4ff09a3e419c3e8d07a62b67ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-regex/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100466, "scanner": "repobility-docker", "fingerprint": "b6acab22801dc3cb9f7850b8b5125525428407d15e25008b808ec4036409c853", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6acab22801dc3cb9f7850b8b5125525428407d15e25008b808ec4036409c853"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-lexical/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100465, "scanner": "repobility-docker", "fingerprint": "28c2e39c225b2c9e101ff7866ff2aa9cc4d92218b70f15dd98a5ff1cc3bb81e3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28c2e39c225b2c9e101ff7866ff2aa9cc4d92218b70f15dd98a5ff1cc3bb81e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-lexical/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100464, "scanner": "repobility-docker", "fingerprint": "d8acb253b8b86d58222c3b725a73355b37699659873851ed9ae45b4be43e01e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8acb253b8b86d58222c3b725a73355b37699659873851ed9ae45b4be43e01e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-coreutils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100463, "scanner": "repobility-docker", "fingerprint": "119d6d9b16ad36b31d4b6259e648ad5cd7c1645489ab7276ae50e92b705cc92a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|119d6d9b16ad36b31d4b6259e648ad5cd7c1645489ab7276ae50e92b705cc92a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-coreutils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100462, "scanner": "repobility-docker", "fingerprint": "351918262a1a822728763319ca66ab3e52c378a9fa313ce5724b21c31eb34451", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|351918262a1a822728763319ca66ab3e52c378a9fa313ce5724b21c31eb34451"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-brotli/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100461, "scanner": "repobility-docker", "fingerprint": "bab8d2d29e36e26be84c30a7d77aa03174ac7bab21ec3db0435aaa78ac66ee08", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bab8d2d29e36e26be84c30a7d77aa03174ac7bab21ec3db0435aaa78ac66ee08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-brotli/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100460, "scanner": "repobility-docker", "fingerprint": "2e0fbf4e029d67fe239165122d83c0366b67e2be87e61383964802564ba704b8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e0fbf4e029d67fe239165122d83c0366b67e2be87e61383964802564ba704b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rust-brotli/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100459, "scanner": "repobility-docker", "fingerprint": "76daf9bf4f7869a2c12d112051e0ab8c70e76c9d130548054f138358016dda55", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76daf9bf4f7869a2c12d112051e0ab8c70e76c9d130548054f138358016dda55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/runc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100458, "scanner": "repobility-docker", "fingerprint": "ba09c56854b7d706134970e9e2cf14b9048146ec62d696e8901531f52f64387a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba09c56854b7d706134970e9e2cf14b9048146ec62d696e8901531f52f64387a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/runc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100457, "scanner": "repobility-docker", "fingerprint": "78a5acce2af82f1f457eb8e92cf6cf3d1091e5cea62da84e172044d85ed7b376", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78a5acce2af82f1f457eb8e92cf6cf3d1091e5cea62da84e172044d85ed7b376"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100454, "scanner": "repobility-docker", "fingerprint": "b8cd1034e253d05bdef6b8575b265e16388b28abe12f17afa5b485fda24df3c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8cd1034e253d05bdef6b8575b265e16388b28abe12f17afa5b485fda24df3c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100453, "scanner": "repobility-docker", "fingerprint": "bebf38ae7712793d4f0942a34bad2ab980b8e7088a91ad98acedbe5f7d6627de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bebf38ae7712793d4f0942a34bad2ab980b8e7088a91ad98acedbe5f7d6627de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rtpproxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100452, "scanner": "repobility-docker", "fingerprint": "7b205ff69fc2150cd3d738d591a3d12629d900b9309d953c16bd9a7772daeb95", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b205ff69fc2150cd3d738d591a3d12629d900b9309d953c16bd9a7772daeb95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rtpproxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100451, "scanner": "repobility-docker", "fingerprint": "dbe55a074fdc3013af0996f80a596e2523d4533d6d351e48d9e302eead3cb5ac", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dbe55a074fdc3013af0996f80a596e2523d4533d6d351e48d9e302eead3cb5ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/roughtime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100450, "scanner": "repobility-docker", "fingerprint": "d8a69ff9cebac5a6fad9071718e2975e00bebe78873a0d239f86a388151569a8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8a69ff9cebac5a6fad9071718e2975e00bebe78873a0d239f86a388151569a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/roughtime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100449, "scanner": "repobility-docker", "fingerprint": "37afd591f880a267e30128c3ce4be0a50264f8542056a8c2d3e3202ddc4f7367", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37afd591f880a267e30128c3ce4be0a50264f8542056a8c2d3e3202ddc4f7367"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ron/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100446, "scanner": "repobility-docker", "fingerprint": "4b2c444f30df67a9ebd180060fe0ff9c6d4f8fa59661ddc1d3f815a3fd118a4e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b2c444f30df67a9ebd180060fe0ff9c6d4f8fa59661ddc1d3f815a3fd118a4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ron/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100445, "scanner": "repobility-docker", "fingerprint": "b1aa750a79d92b25ec93d2a4b31d7a41d232c1b626d2ea6303d1b5f7bd83355c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b1aa750a79d92b25ec93d2a4b31d7a41d232c1b626d2ea6303d1b5f7bd83355c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rome/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100444, "scanner": "repobility-docker", "fingerprint": "150b4d51192db55ef7cdbeb2aef500b1d3a927c4b80fd7af71f7a24749cdc673", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|150b4d51192db55ef7cdbeb2aef500b1d3a927c4b80fd7af71f7a24749cdc673"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rome/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100443, "scanner": "repobility-docker", "fingerprint": "6897bd2e8683bd5a0d7e781b8b4f55ede9f9d06a25ab58965eb29b726005126b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6897bd2e8683bd5a0d7e781b8b4f55ede9f9d06a25ab58965eb29b726005126b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rocksdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100440, "scanner": "repobility-docker", "fingerprint": "8d1ea519c7113528d4b6c0eddfa6c363c11b75ac5872b30836fc81b7bb534d03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d1ea519c7113528d4b6c0eddfa6c363c11b75ac5872b30836fc81b7bb534d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rocksdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100439, "scanner": "repobility-docker", "fingerprint": "0cafc022f52fb7e17b07bf4969a89d27437278178920747df0f9e964d4248777", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cafc022f52fb7e17b07bf4969a89d27437278178920747df0f9e964d4248777"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/roaring-bitmap/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100438, "scanner": "repobility-docker", "fingerprint": "7b38282c63461e825346e7422ade75ffea0677d42b3460eed8f08c148fb2cf60", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b38282c63461e825346e7422ade75ffea0677d42b3460eed8f08c148fb2cf60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rnp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100435, "scanner": "repobility-docker", "fingerprint": "92d9450dcb49ce795b8076246165a1d893cac1b742b07fde89ff09616a353c41", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92d9450dcb49ce795b8076246165a1d893cac1b742b07fde89ff09616a353c41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rnp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100434, "scanner": "repobility-docker", "fingerprint": "b4cf30dd4e03e28a9d3576896905c765906da4026dc3cc2d5b324d34d4f38acd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4cf30dd4e03e28a9d3576896905c765906da4026dc3cc2d5b324d34d4f38acd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rich/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100433, "scanner": "repobility-docker", "fingerprint": "655674adae954713145ef65cdd9ef49cb003ccbfc265ade69d5f57e222f10f45", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|655674adae954713145ef65cdd9ef49cb003ccbfc265ade69d5f57e222f10f45"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rich/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100432, "scanner": "repobility-docker", "fingerprint": "7b19652a3c26585a8d0745ec902632c290eb7a8f1a31f00ef78955729fb8947d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b19652a3c26585a8d0745ec902632c290eb7a8f1a31f00ef78955729fb8947d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rhino/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100431, "scanner": "repobility-docker", "fingerprint": "ff4ba332efc7194c804487ba0be0f2d5ae91dc6c1ba02b2e70407cfda352fc1b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff4ba332efc7194c804487ba0be0f2d5ae91dc6c1ba02b2e70407cfda352fc1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rhino/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100430, "scanner": "repobility-docker", "fingerprint": "6249f4b141e78fd4cd3ea644be1ba5643b04894dbeaf69e1577a2776d1d8341b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6249f4b141e78fd4cd3ea644be1ba5643b04894dbeaf69e1577a2776d1d8341b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rhai/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100429, "scanner": "repobility-docker", "fingerprint": "d31fa9a3449d80c97a684b113f2fd1ddcebab6e161f3436c2493cd84fc0af594", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d31fa9a3449d80c97a684b113f2fd1ddcebab6e161f3436c2493cd84fc0af594"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rhai/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100428, "scanner": "repobility-docker", "fingerprint": "84eb05d51bb0584032a47b9cad44ca8cb32824cfafd6834c1df584d263c7617d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84eb05d51bb0584032a47b9cad44ca8cb32824cfafd6834c1df584d263c7617d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rfc3967/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100427, "scanner": "repobility-docker", "fingerprint": "339420b9e89e02707e8557d9f084c3aa79cec3c69c3eba9d0c17e70065cec3d1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|339420b9e89e02707e8557d9f084c3aa79cec3c69c3eba9d0c17e70065cec3d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rfc3967/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100426, "scanner": "repobility-docker", "fingerprint": "41d2a8b5803069d1963db84ee0e57558a270348dc0a29e635bedc26a50396ce5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41d2a8b5803069d1963db84ee0e57558a270348dc0a29e635bedc26a50396ce5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/retry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100425, "scanner": "repobility-docker", "fingerprint": "e454a0ecc8f7e28d0c0bc6d11fa57d74a4206a187e2fc9ad4d758cb663d0f820", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e454a0ecc8f7e28d0c0bc6d11fa57d74a4206a187e2fc9ad4d758cb663d0f820"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/retry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100424, "scanner": "repobility-docker", "fingerprint": "a8b96519e0ac11868ccb6b8534084a0b61d4bded70aae8fb4c9d026d0070ea3f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8b96519e0ac11868ccb6b8534084a0b61d4bded70aae8fb4c9d026d0070ea3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/retrofit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100421, "scanner": "repobility-docker", "fingerprint": "59e7756a29da2e8321293564694be88142f23159f54c252a6e5773d960d01f5b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|59e7756a29da2e8321293564694be88142f23159f54c252a6e5773d960d01f5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/resiprocate/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100418, "scanner": "repobility-docker", "fingerprint": "a482543bb66d1ca54123dc351daa55c27ddf68fdc2d023695c8b0fac63092fd5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a482543bb66d1ca54123dc351daa55c27ddf68fdc2d023695c8b0fac63092fd5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/requests/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100416, "scanner": "repobility-docker", "fingerprint": "caee8829478ed26dbe466f443aa4481400d118ff7d2002d641834166892a7c36", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|caee8829478ed26dbe466f443aa4481400d118ff7d2002d641834166892a7c36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/requests/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100415, "scanner": "repobility-docker", "fingerprint": "5a558acb3bdbccbf4eb90c3df002418d998a4f8062d06aad3295dca0a5eb179a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a558acb3bdbccbf4eb90c3df002418d998a4f8062d06aad3295dca0a5eb179a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reload4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100414, "scanner": "repobility-docker", "fingerprint": "085384443b6b71ae112c7bb81cf5ef174b3b585dd5b6786319af3cd40c318d4e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|085384443b6b71ae112c7bb81cf5ef174b3b585dd5b6786319af3cd40c318d4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reload4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100413, "scanner": "repobility-docker", "fingerprint": "77305f1f844f014da24445ceccad087059cffc00f74d81600a0b88ccb7cba843", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77305f1f844f014da24445ceccad087059cffc00f74d81600a0b88ccb7cba843"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/relic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100410, "scanner": "repobility-docker", "fingerprint": "13fbdabe0ce1ca5ae0b77f3c13879afa0c70653942b3b75fc8000dd680e4e3bf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13fbdabe0ce1ca5ae0b77f3c13879afa0c70653942b3b75fc8000dd680e4e3bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/relic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100409, "scanner": "repobility-docker", "fingerprint": "e8b78b104ac90a190ae5b877d3907d2fb8f9a27f2f8c1ea5e3cae4136bbf4d67", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8b78b104ac90a190ae5b877d3907d2fb8f9a27f2f8c1ea5e3cae4136bbf4d67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rekor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100408, "scanner": "repobility-docker", "fingerprint": "d6206fb95a6affe6576868b71432bd92528cc4c50cb4073e9b2fc5ecec88b15b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6206fb95a6affe6576868b71432bd92528cc4c50cb4073e9b2fc5ecec88b15b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rekor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100407, "scanner": "repobility-docker", "fingerprint": "86c4ca08aa273b79f1aa0156395129a32898d2bada8862a73aceee418b066355", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|86c4ca08aa273b79f1aa0156395129a32898d2bada8862a73aceee418b066355"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reflections/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100404, "scanner": "repobility-docker", "fingerprint": "04700a0a6325179cf71d7fad66682be3f23bf7a53c5ccd1c1b77da88784be052", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04700a0a6325179cf71d7fad66682be3f23bf7a53c5ccd1c1b77da88784be052"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reflections/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100403, "scanner": "repobility-docker", "fingerprint": "5728a6e8e781e0c79c1717f8b1e6787b284106e0d8590a0231215190f31b08c2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5728a6e8e781e0c79c1717f8b1e6787b284106e0d8590a0231215190f31b08c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100402, "scanner": "repobility-docker", "fingerprint": "1fb7f8c580bfe764a2e61510a814aa6e97a13ee26491daa149e4cd293f257ab8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1fb7f8c580bfe764a2e61510a814aa6e97a13ee26491daa149e4cd293f257ab8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redux/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100401, "scanner": "repobility-docker", "fingerprint": "c847cf8e6b74c33ffe1664709adf70aac022a9e3bd278e776355ec7d1145a4c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c847cf8e6b74c33ffe1664709adf70aac022a9e3bd278e776355ec7d1145a4c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redis-rs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100400, "scanner": "repobility-docker", "fingerprint": "1b648335c14d5c9bf67be5e6d6afab6ddd3765130b4192bf0579f9efe12a9a6b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b648335c14d5c9bf67be5e6d6afab6ddd3765130b4192bf0579f9efe12a9a6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redis-rs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100399, "scanner": "repobility-docker", "fingerprint": "589981a91d181cf45424e1476d5db5fbd06d6263e6e6d97d66186cf98f543663", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|589981a91d181cf45424e1476d5db5fbd06d6263e6e6d97d66186cf98f543663"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redis-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100398, "scanner": "repobility-docker", "fingerprint": "3b5200e1af4b4680b9bde6a3396e196a54fe88082a1e6637024c2d148888afc9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b5200e1af4b4680b9bde6a3396e196a54fe88082a1e6637024c2d148888afc9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/redis-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100397, "scanner": "repobility-docker", "fingerprint": "e034d62a00bb00396d20282757b173846ef53ea39b50634e59d5a151761a8f56", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e034d62a00bb00396d20282757b173846ef53ea39b50634e59d5a151761a8f56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/readstat/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100394, "scanner": "repobility-docker", "fingerprint": "5251e2b0ec058b6b1ef35fb1f3a12d1efe73d4e276fcca2e6e23da54311d9606", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5251e2b0ec058b6b1ef35fb1f3a12d1efe73d4e276fcca2e6e23da54311d9606"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/readstat/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100393, "scanner": "repobility-docker", "fingerprint": "d65c603b847e1b125376cce73a24b2e409fd3598d74304724b6bde95734e40af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d65c603b847e1b125376cce73a24b2e409fd3598d74304724b6bde95734e40af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/re2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100390, "scanner": "repobility-docker", "fingerprint": "61b47eedb2e9934b1f5a0f214bea87d25be456f1bf9d9bb831267f8905e52c13", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|61b47eedb2e9934b1f5a0f214bea87d25be456f1bf9d9bb831267f8905e52c13"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/re2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100389, "scanner": "repobility-docker", "fingerprint": "0fb69f244caf1dd88b1e696f1c7da203eeca8b2ee481812c51dec53882c3d840", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0fb69f244caf1dd88b1e696f1c7da203eeca8b2ee481812c51dec53882c3d840"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdkit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100386, "scanner": "repobility-docker", "fingerprint": "02eb7de249a519a5834e46cad94fafb964fad44a263b73b91bb460cd403ed906", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02eb7de249a519a5834e46cad94fafb964fad44a263b73b91bb460cd403ed906"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdkit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100385, "scanner": "repobility-docker", "fingerprint": "df0215e7c92df6c7c55a9acc90ec2a0ac04903ff6d7a22577b1627ed3d5ce925", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df0215e7c92df6c7c55a9acc90ec2a0ac04903ff6d7a22577b1627ed3d5ce925"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdf4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100384, "scanner": "repobility-docker", "fingerprint": "b865c0a728e041e6b1ee0dc75e2a06104138f39902738b568ed8670936287509", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b865c0a728e041e6b1ee0dc75e2a06104138f39902738b568ed8670936287509"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdf4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100383, "scanner": "repobility-docker", "fingerprint": "f194cd7929825d181ede8a60f315d858ea82a06063408631e300fbaae9948ccb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f194cd7929825d181ede8a60f315d858ea82a06063408631e300fbaae9948ccb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rauc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100380, "scanner": "repobility-docker", "fingerprint": "5ea18f0bb0d488c1ed7f95281476095fbea8b45482d65f3d292d63244cb55d2e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ea18f0bb0d488c1ed7f95281476095fbea8b45482d65f3d292d63244cb55d2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rauc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100379, "scanner": "repobility-docker", "fingerprint": "7fce88b92bf87d5a08d378dc4c3fbbf93246d1557ec9858e179a431673b2d3df", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7fce88b92bf87d5a08d378dc4c3fbbf93246d1557ec9858e179a431673b2d3df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rapidjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100376, "scanner": "repobility-docker", "fingerprint": "174d926ce2407e5a70fbf3ade4cef7e74df5f645b069174141f266b93f7854d1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|174d926ce2407e5a70fbf3ade4cef7e74df5f645b069174141f266b93f7854d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rapidjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100375, "scanner": "repobility-docker", "fingerprint": "2001ef7ade46c9fd508d3b1592568c2568bc73a263b48439ba1f8b6bf4827c16", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2001ef7ade46c9fd508d3b1592568c2568bc73a263b48439ba1f8b6bf4827c16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radvd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100372, "scanner": "repobility-docker", "fingerprint": "c783b04db329c65591153c4263ed88013ecc46d67dc87482abafd53b796639f1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c783b04db329c65591153c4263ed88013ecc46d67dc87482abafd53b796639f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radon/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100371, "scanner": "repobility-docker", "fingerprint": "dd005020a826bd0fbe93460c4a74cc2c41e56cca020eac3cd897b87dcd433785", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd005020a826bd0fbe93460c4a74cc2c41e56cca020eac3cd897b87dcd433785"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radon/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100370, "scanner": "repobility-docker", "fingerprint": "0a09f926dd1d823a88a5c59285d7cb6b906387395e7bc924d27f36fe6e6a7e38", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a09f926dd1d823a88a5c59285d7cb6b906387395e7bc924d27f36fe6e6a7e38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radare2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100368, "scanner": "repobility-docker", "fingerprint": "7572f13ba23484737427b2cce1a878fae9d5888ed7a9b6bd6e899ed9ce80bf8d", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7572f13ba23484737427b2cce1a878fae9d5888ed7a9b6bd6e899ed9ce80bf8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radare2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100367, "scanner": "repobility-docker", "fingerprint": "399a5e39e292659956e7880e47a118f650756190b3b33b103fc5f2ff22e956e2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|399a5e39e292659956e7880e47a118f650756190b3b33b103fc5f2ff22e956e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radare2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100366, "scanner": "repobility-docker", "fingerprint": "75eb9e87a253207a781887da46b9d121b8e36e9100bcff1ac7ceb8ff04b6a248", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75eb9e87a253207a781887da46b9d121b8e36e9100bcff1ac7ceb8ff04b6a248"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rabbitmq-c/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100363, "scanner": "repobility-docker", "fingerprint": "52ede4aa04f05e25eac50c746dd5748f374f0eaf0279a1907571d7863d82e76d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52ede4aa04f05e25eac50c746dd5748f374f0eaf0279a1907571d7863d82e76d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rabbitmq-c/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100362, "scanner": "repobility-docker", "fingerprint": "a084e420b19905a91935a3eab2a16538ed2a700a0de7ce1a01195a19bca27d80", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a084e420b19905a91935a3eab2a16538ed2a700a0de7ce1a01195a19bca27d80"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quickjs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100359, "scanner": "repobility-docker", "fingerprint": "7c027b9df0d003a9578a1dc5e9e6859e0d93e91aaabc633bc1b678d7bc5790a1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c027b9df0d003a9578a1dc5e9e6859e0d93e91aaabc633bc1b678d7bc5790a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quickjs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100358, "scanner": "repobility-docker", "fingerprint": "09540bbd5d9f61bc2b5eab67dff5200259f92e82f7df1a8cb3a9b3f6a9da8b9e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09540bbd5d9f61bc2b5eab67dff5200259f92e82f7df1a8cb3a9b3f6a9da8b9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quick-xml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100357, "scanner": "repobility-docker", "fingerprint": "dbf52912491663cb67bec0e94ad39c632c0dc6fe0565ed14b985646d3be23c48", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dbf52912491663cb67bec0e94ad39c632c0dc6fe0565ed14b985646d3be23c48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quick-xml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100356, "scanner": "repobility-docker", "fingerprint": "e22ffc9efd1df076b03db134f42a78fcac25f8abe0eac0a12a975319001fc8b6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e22ffc9efd1df076b03db134f42a78fcac25f8abe0eac0a12a975319001fc8b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quiche-cloudflare/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100355, "scanner": "repobility-docker", "fingerprint": "d73f268ba566376706b6ebaa43e94256f3666697b12986799bafdb18646e26f3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d73f268ba566376706b6ebaa43e94256f3666697b12986799bafdb18646e26f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quiche-cloudflare/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100354, "scanner": "repobility-docker", "fingerprint": "60b5aa08769b1befd1ab896b70117b5ef716ee77eae5f535a1f34b9277734fda", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|60b5aa08769b1befd1ab896b70117b5ef716ee77eae5f535a1f34b9277734fda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quiche/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100351, "scanner": "repobility-docker", "fingerprint": "b0dfa11cbb440eb0bbd3c969fd1fec24f1fc0a86685a41b6b8036ac6f0026eb1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0dfa11cbb440eb0bbd3c969fd1fec24f1fc0a86685a41b6b8036ac6f0026eb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quic-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100350, "scanner": "repobility-docker", "fingerprint": "0cf737ece4c2815b5c23a58b0c93066d5c543cf0956be8f5632fa496fb2d5fc0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cf737ece4c2815b5c23a58b0c93066d5c543cf0956be8f5632fa496fb2d5fc0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quic-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100349, "scanner": "repobility-docker", "fingerprint": "cd5a86a91a1c99d20a46ca1dce166139be315a3a84cdf7c55b3627e1af9cb7b7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd5a86a91a1c99d20a46ca1dce166139be315a3a84cdf7c55b3627e1af9cb7b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qubes-os/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100348, "scanner": "repobility-docker", "fingerprint": "9d340f8bdef52c8d979c4badc77bd2785d9e76866120db6b162dcdb639b3a60f", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d340f8bdef52c8d979c4badc77bd2785d9e76866120db6b162dcdb639b3a60f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qubes-os/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100347, "scanner": "repobility-docker", "fingerprint": "ea471649b00f8ac8d5d96225a1d9c9f95a67826dc34fea43b6d4955da6b0c31a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea471649b00f8ac8d5d96225a1d9c9f95a67826dc34fea43b6d4955da6b0c31a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qubes-os/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100346, "scanner": "repobility-docker", "fingerprint": "1d34499abe5c70052de7935f870f22ea072951cff8213524cd76195ceb73a2bd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d34499abe5c70052de7935f870f22ea072951cff8213524cd76195ceb73a2bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quartz/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100345, "scanner": "repobility-docker", "fingerprint": "5f2d01f9260b11b0888301bc67b59c326ba3535df5b6a5e7cd5fe885094b3cfe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f2d01f9260b11b0888301bc67b59c326ba3535df5b6a5e7cd5fe885094b3cfe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quantlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100342, "scanner": "repobility-docker", "fingerprint": "1e671b0a434236a4976d1c89864ccb7e1671c02c329599371f8df25f1725904e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e671b0a434236a4976d1c89864ccb7e1671c02c329599371f8df25f1725904e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quantlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100341, "scanner": "repobility-docker", "fingerprint": "cf5ace1b2b4a4af032a2aaceebbcf522225fca9095a540dbdcea047301c574af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf5ace1b2b4a4af032a2aaceebbcf522225fca9095a540dbdcea047301c574af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100338, "scanner": "repobility-docker", "fingerprint": "df4608e8a292e1a32e3e9175a468c859e61cd0244bd9be1782e33c291dd65907", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df4608e8a292e1a32e3e9175a468c859e61cd0244bd9be1782e33c291dd65907"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100337, "scanner": "repobility-docker", "fingerprint": "26c7eb3cb479dba413cbc5c238ab89a0dd0f8c5c9e4f51482afd6547415762a6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26c7eb3cb479dba413cbc5c238ab89a0dd0f8c5c9e4f51482afd6547415762a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpid-proton/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100333, "scanner": "repobility-docker", "fingerprint": "3f8ac7595fbf70171adb5850aedd98c280920733e40484c2b6c8428b9b24c46d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f8ac7595fbf70171adb5850aedd98c280920733e40484c2b6c8428b9b24c46d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpid-proton/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100332, "scanner": "repobility-docker", "fingerprint": "7065efbe493a041b02b876f1931478864a3ae8b9ee09663e21fa5477200750c9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7065efbe493a041b02b876f1931478864a3ae8b9ee09663e21fa5477200750c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100329, "scanner": "repobility-docker", "fingerprint": "10b5559c5af014c0bfaa0f0b5194a15c218029809ae30dac03056bc6f451e7d5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10b5559c5af014c0bfaa0f0b5194a15c218029809ae30dac03056bc6f451e7d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100328, "scanner": "repobility-docker", "fingerprint": "174b4170373795ae2767e759ffbb140c4acc2b226af6e0a506232f7d5d4beb33", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|174b4170373795ae2767e759ffbb140c4acc2b226af6e0a506232f7d5d4beb33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qemu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100324, "scanner": "repobility-docker", "fingerprint": "63be1190ee6e7e5ce441bccf6ea9536dbbaa38d324a6452afcdd2ce1c68d4338", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63be1190ee6e7e5ce441bccf6ea9536dbbaa38d324a6452afcdd2ce1c68d4338"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qemu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100323, "scanner": "repobility-docker", "fingerprint": "b6d809212809508f741d95f24eef7bbfe4fb0d8ff9d09c64fa1fd8ace30db8b0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6d809212809508f741d95f24eef7bbfe4fb0d8ff9d09c64fa1fd8ace30db8b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qdox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100320, "scanner": "repobility-docker", "fingerprint": "06a04cfa7d63395b0664a6dfe6496824f85aa7ed4bcdfa92709c295839ca0741", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|06a04cfa7d63395b0664a6dfe6496824f85aa7ed4bcdfa92709c295839ca0741"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qdox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100319, "scanner": "repobility-docker", "fingerprint": "57a9e8c880f4b7d7e70c30df95b58f3b7d58c9d0b7ea14715091974ce45b1e1b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57a9e8c880f4b7d7e70c30df95b58f3b7d58c9d0b7ea14715091974ce45b1e1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100316, "scanner": "repobility-docker", "fingerprint": "a01c0c9e342bf81a26b05127d12325ef21e07265e405152679aacd15fb51e16b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a01c0c9e342bf81a26b05127d12325ef21e07265e405152679aacd15fb51e16b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100315, "scanner": "repobility-docker", "fingerprint": "13f3e04f72d823a1cbe27eb5b1d8b414eb3054e878847c357d72b11d6e2b1c57", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13f3e04f72d823a1cbe27eb5b1d8b414eb3054e878847c357d72b11d6e2b1c57"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyzmq/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100311, "scanner": "repobility-docker", "fingerprint": "4a2fde8280759fc29e5734027b93f0789e176204b110481ba85e50b3d2a39e38", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a2fde8280759fc29e5734027b93f0789e176204b110481ba85e50b3d2a39e38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyzmq/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100310, "scanner": "repobility-docker", "fingerprint": "8e5ee61cb57bfac1e8d649f327c71d9e57937452462f180e3093b3d07f150761", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8e5ee61cb57bfac1e8d649f327c71d9e57937452462f180e3093b3d07f150761"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100308, "scanner": "repobility-docker", "fingerprint": "8d077772405841117d62235f3f46db7ccb0ea6998a90b19940c1fe096dd24de5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d077772405841117d62235f3f46db7ccb0ea6998a90b19940c1fe096dd24de5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100307, "scanner": "repobility-docker", "fingerprint": "66bb01431e58bac43b53a8e4d6b91264f164894cbbf050530bd18ea4a91b380e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|66bb01431e58bac43b53a8e4d6b91264f164894cbbf050530bd18ea4a91b380e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyxdg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100304, "scanner": "repobility-docker", "fingerprint": "c49e1a5401f7df73916da68d3bebfde8049566c2205d9232d6380c1c7664f5ea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c49e1a5401f7df73916da68d3bebfde8049566c2205d9232d6380c1c7664f5ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyxdg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100303, "scanner": "repobility-docker", "fingerprint": "2c1fad15571e44801d1f1bcfdc7114f41e511909d8928900b3ef7f31f339f83b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c1fad15571e44801d1f1bcfdc7114f41e511909d8928900b3ef7f31f339f83b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyvex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100300, "scanner": "repobility-docker", "fingerprint": "609604bd9c6ffefda22990993aa83a910ab945e929bc9be7d584cbe7761bd38f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|609604bd9c6ffefda22990993aa83a910ab945e929bc9be7d584cbe7761bd38f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100297, "scanner": "repobility-docker", "fingerprint": "724a661d8cca5be836226b4d74525cb82bdb7617187aa29b47f24b844d609219", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|724a661d8cca5be836226b4d74525cb82bdb7617187aa29b47f24b844d609219"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100296, "scanner": "repobility-docker", "fingerprint": "ccc48eeb123245ade2f601aff25be57db6727029a70a2f07d79e9b86b5b59d28", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ccc48eeb123245ade2f601aff25be57db6727029a70a2f07d79e9b86b5b59d28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-openid/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100295, "scanner": "repobility-docker", "fingerprint": "5161a3b72e6573bd6c7e9575c4068ad6af08d146e67e4e9b0cf5a979edb89cfc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5161a3b72e6573bd6c7e9575c4068ad6af08d146e67e4e9b0cf5a979edb89cfc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-openid/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100294, "scanner": "repobility-docker", "fingerprint": "2218a7e25ed0a46c1e746e16931703cf515d516fdc9001e22c88f7f1b3be989c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2218a7e25ed0a46c1e746e16931703cf515d516fdc9001e22c88f7f1b3be989c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-libraries/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100291, "scanner": "repobility-docker", "fingerprint": "80d9dccdfcd6362f74408c05020e339ce9971c5bae2c6a9f98a791d97aa2de20", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|80d9dccdfcd6362f74408c05020e339ce9971c5bae2c6a9f98a791d97aa2de20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-libraries/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100290, "scanner": "repobility-docker", "fingerprint": "0808f78ebb8d139a80de2aaae31e68e88165beecd3d41b6668c36f918ef28c97", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0808f78ebb8d139a80de2aaae31e68e88165beecd3d41b6668c36f918ef28c97"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-tabulate/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100287, "scanner": "repobility-docker", "fingerprint": "30d58a305899e59dd8556308351daeae089d936e6f259306cb682507a0aafd03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|30d58a305899e59dd8556308351daeae089d936e6f259306cb682507a0aafd03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-tabulate/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100286, "scanner": "repobility-docker", "fingerprint": "58a1f70f07f76dddb7774055566a1b44f9fe40fc97358a27f599e9e719f33ddc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58a1f70f07f76dddb7774055566a1b44f9fe40fc97358a27f599e9e719f33ddc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-rsa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100285, "scanner": "repobility-docker", "fingerprint": "03717538143635a9ea5ee8e00d375e8c9229fb0145ce6050136ebc68a91674fe", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03717538143635a9ea5ee8e00d375e8c9229fb0145ce6050136ebc68a91674fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-rsa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100284, "scanner": "repobility-docker", "fingerprint": "53a108d32107eacdb9b1acdfb2c4ff1392b102bd6bb36bd328d647c141808c5c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53a108d32107eacdb9b1acdfb2c4ff1392b102bd6bb36bd328d647c141808c5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-rison/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100283, "scanner": "repobility-docker", "fingerprint": "3c04564b93d9552a5703d7bbcfa99a4a09b0feca88f27b117d7e20c224ce4a95", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c04564b93d9552a5703d7bbcfa99a4a09b0feca88f27b117d7e20c224ce4a95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-rison/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100282, "scanner": "repobility-docker", "fingerprint": "ae6320e91f7ec2ca6b73f54f76971e95c595448f772050826d1c22b3a3e9d786", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae6320e91f7ec2ca6b73f54f76971e95c595448f772050826d1c22b3a3e9d786"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pypdf/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100281, "scanner": "repobility-docker", "fingerprint": "610e556e712afbd76d120f05340f55365078f114be6e20a11e8ae20df7546b3f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|610e556e712afbd76d120f05340f55365078f114be6e20a11e8ae20df7546b3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pypdf/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100280, "scanner": "repobility-docker", "fingerprint": "53448a384bfba2d70139855bef1cd9961b9350616bee503dff02bc0c3d307662", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53448a384bfba2d70139855bef1cd9961b9350616bee503dff02bc0c3d307662"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-prompt-toolkit/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100279, "scanner": "repobility-docker", "fingerprint": "e566b6560db8feaf4c7e88a399df10774fc82388cc50c2c61ae0001bb13bfcd7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e566b6560db8feaf4c7e88a399df10774fc82388cc50c2c61ae0001bb13bfcd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-prompt-toolkit/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100278, "scanner": "repobility-docker", "fingerprint": "db3864eaf9e6b89f282b373b36aee4065b2c3dcddbebba5cb6e5771ea6a792fe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db3864eaf9e6b89f282b373b36aee4065b2c3dcddbebba5cb6e5771ea6a792fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-phonenumbers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100275, "scanner": "repobility-docker", "fingerprint": "8a68efe9ec2f51b9992c0ea9bddd6bde695c105d1e31c52b76da0d57a1b965b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a68efe9ec2f51b9992c0ea9bddd6bde695c105d1e31c52b76da0d57a1b965b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-phonenumbers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100274, "scanner": "repobility-docker", "fingerprint": "85d2ff2b38bc80682dbbfbda3ea9b6d1ab2f320bec6545f59a6fe28db08a26b6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|85d2ff2b38bc80682dbbfbda3ea9b6d1ab2f320bec6545f59a6fe28db08a26b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pathspec/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100273, "scanner": "repobility-docker", "fingerprint": "7d1e6482b87adc51cfcf1e9d5f14cb2b3ca9a43fc37ac203c6acc19b5ee54c51", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d1e6482b87adc51cfcf1e9d5f14cb2b3ca9a43fc37ac203c6acc19b5ee54c51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pathspec/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100272, "scanner": "repobility-docker", "fingerprint": "e614ac56691652a8e6bf7e91e5b0ebc47e6184f2f175fb5029a29a4a668fb9bc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e614ac56691652a8e6bf7e91e5b0ebc47e6184f2f175fb5029a29a4a668fb9bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-nvd3/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100271, "scanner": "repobility-docker", "fingerprint": "7529a6b2ef12434c7df00430d73fb5a74d2d09bd1ede76fadce7b1fb18b55030", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7529a6b2ef12434c7df00430d73fb5a74d2d09bd1ede76fadce7b1fb18b55030"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-nameparser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100270, "scanner": "repobility-docker", "fingerprint": "220da1024a0a27cc5eca2eb4cc7461552d91688b67f36fe709b77b1078388cd3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|220da1024a0a27cc5eca2eb4cc7461552d91688b67f36fe709b77b1078388cd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-nameparser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100269, "scanner": "repobility-docker", "fingerprint": "9ac971d0f98727fabed372d32390664dbd569810acf86ce72d19cb6e76a5b0a0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ac971d0f98727fabed372d32390664dbd569810acf86ce72d19cb6e76a5b0a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-multipart/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100265, "scanner": "repobility-docker", "fingerprint": "233fd8abe8cb54bbe7919679c609a723a2d4b3d1eef3ad056182c34724945281", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|233fd8abe8cb54bbe7919679c609a723a2d4b3d1eef3ad056182c34724945281"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-multipart/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100264, "scanner": "repobility-docker", "fingerprint": "31a64a2ffae4fc2cfb35c862318d370d722ecf0076cee5cc26a629d1dac4668d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31a64a2ffae4fc2cfb35c862318d370d722ecf0076cee5cc26a629d1dac4668d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-markdownify/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100263, "scanner": "repobility-docker", "fingerprint": "8a6ea56c0948100939eec0e469914a7c7fd1f31fe9b497e4bc2ec04fc4492dc1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a6ea56c0948100939eec0e469914a7c7fd1f31fe9b497e4bc2ec04fc4492dc1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-markdownify/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100262, "scanner": "repobility-docker", "fingerprint": "7c73d898426ae8e8e2b8ce58fea20cedb3193ba9be5fc15a49ac80ec3c13fbc4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c73d898426ae8e8e2b8ce58fea20cedb3193ba9be5fc15a49ac80ec3c13fbc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-markdown/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100261, "scanner": "repobility-docker", "fingerprint": "db05c331ce588e1209b02d3bc51d0310a37596e65f66bd053ad27ec7e7546acd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db05c331ce588e1209b02d3bc51d0310a37596e65f66bd053ad27ec7e7546acd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-markdown/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100260, "scanner": "repobility-docker", "fingerprint": "4885353173ba3becebbe9dba7430809043f6533c32690e52ae40de08ff688773", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4885353173ba3becebbe9dba7430809043f6533c32690e52ae40de08ff688773"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-lz4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100259, "scanner": "repobility-docker", "fingerprint": "e189f9d694182ff4f5378608bd39de2893bc4a285fd7a94ade1b4d81e84c2d0c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e189f9d694182ff4f5378608bd39de2893bc4a285fd7a94ade1b4d81e84c2d0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-lz4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100258, "scanner": "repobility-docker", "fingerprint": "9cb53441b0dd4780193ee1e4d271135504eec5f6703c712c5e6f5b20641a46db", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9cb53441b0dd4780193ee1e4d271135504eec5f6703c712c5e6f5b20641a46db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-jose/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100257, "scanner": "repobility-docker", "fingerprint": "2d9bc1c444a482da12ff1af07076397a830c03680ba337f0ff765fdce11202e4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d9bc1c444a482da12ff1af07076397a830c03680ba337f0ff765fdce11202e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-jose/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100256, "scanner": "repobility-docker", "fingerprint": "f158d6d67c99ea78d3b19c19750178c267968541324d57278692db9331f5dc78", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f158d6d67c99ea78d3b19c19750178c267968541324d57278692db9331f5dc78"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-hyperlink/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100255, "scanner": "repobility-docker", "fingerprint": "918805b9010c0f6869aea201c03b2637e9688ec20ae5f7875fa83d42a5ccf101", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|918805b9010c0f6869aea201c03b2637e9688ec20ae5f7875fa83d42a5ccf101"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-hyperlink/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100254, "scanner": "repobility-docker", "fingerprint": "d18a04b31d96993b23d40f0cb8c86db50f72db97b90d12b76d6ae3b095d982f7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d18a04b31d96993b23d40f0cb8c86db50f72db97b90d12b76d6ae3b095d982f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-graphviz/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100253, "scanner": "repobility-docker", "fingerprint": "92486d6aed60c1455528a69d0cd935625391337b4c3da1f64bdfc87359e38784", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92486d6aed60c1455528a69d0cd935625391337b4c3da1f64bdfc87359e38784"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-graphviz/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100252, "scanner": "repobility-docker", "fingerprint": "ee0e65bdc2a9d489ea221b345a180e4872375a8b4666fac1fcfe4b54edf6362b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee0e65bdc2a9d489ea221b345a180e4872375a8b4666fac1fcfe4b54edf6362b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-future/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100251, "scanner": "repobility-docker", "fingerprint": "38e1a822368bd83b5ae4da41aa8ee08960d8386beaf79a863fdd6701fc232bdb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38e1a822368bd83b5ae4da41aa8ee08960d8386beaf79a863fdd6701fc232bdb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-future/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100250, "scanner": "repobility-docker", "fingerprint": "c767de8d69e4329ebc6b70ae304b58edd124f5192bc5907d1bcfcdfb020701a1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c767de8d69e4329ebc6b70ae304b58edd124f5192bc5907d1bcfcdfb020701a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-fastjsonschema/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100249, "scanner": "repobility-docker", "fingerprint": "a61eb178269ee3e1d9973c43c676091ea65bc7f3e351bd1c436b53b6c81ab043", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a61eb178269ee3e1d9973c43c676091ea65bc7f3e351bd1c436b53b6c81ab043"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-email-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100245, "scanner": "repobility-docker", "fingerprint": "4c9f40e3c0f1042811517b4b589fcb32d955f9ead606dd57093c6c9338f43fd9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c9f40e3c0f1042811517b4b589fcb32d955f9ead606dd57093c6c9338f43fd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-email-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100244, "scanner": "repobility-docker", "fingerprint": "6060f38dad873613a3bdfd4ac28d387a5157a310e8fe4aa5c001bb82ba5c8bf7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6060f38dad873613a3bdfd4ac28d387a5157a310e8fe4aa5c001bb82ba5c8bf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-ecdsa/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100243, "scanner": "repobility-docker", "fingerprint": "6d453ffdf4b70c4d519b3dba9c0d93b82be3dea0f4fad75f16fadb65408b644e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d453ffdf4b70c4d519b3dba9c0d93b82be3dea0f4fad75f16fadb65408b644e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-ecdsa/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100242, "scanner": "repobility-docker", "fingerprint": "03364ffc494fbffe0651ecde824538e266fb068abfad21f8349977b97ab30300", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03364ffc494fbffe0651ecde824538e266fb068abfad21f8349977b97ab30300"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytest-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100241, "scanner": "repobility-docker", "fingerprint": "bc41751441e1e36d72a67822eab555e1572db306603ebd38b467e2d54220d0c2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc41751441e1e36d72a67822eab555e1572db306603ebd38b467e2d54220d0c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytest-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100240, "scanner": "repobility-docker", "fingerprint": "c53bb60441722f3eb5af9adab306ce9ac94b9781b9d121e8d45bb4d1c5b4fcab", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c53bb60441722f3eb5af9adab306ce9ac94b9781b9d121e8d45bb4d1c5b4fcab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytables/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100238, "scanner": "repobility-docker", "fingerprint": "0b66f4ffcc6c95c1e85aaa18883bba9a40091f115fa28da25f821c51a7134dd7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b66f4ffcc6c95c1e85aaa18883bba9a40091f115fa28da25f821c51a7134dd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytables/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100237, "scanner": "repobility-docker", "fingerprint": "9047e3b767123b94694a10053a3b243d6ecc571e7dcc8e752257fd329aefca74", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9047e3b767123b94694a10053a3b243d6ecc571e7dcc8e752257fd329aefca74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyrsistent/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100234, "scanner": "repobility-docker", "fingerprint": "1954d36aad07edf15b2ad7072f81cc8e988c430d142334a1418c2c5e5b8eb549", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1954d36aad07edf15b2ad7072f81cc8e988c430d142334a1418c2c5e5b8eb549"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyrsistent/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100233, "scanner": "repobility-docker", "fingerprint": "14c33dfc2e8ceb1488b8cb5cd702266e4a9099a2ec239ede65cf1148127740e0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|14c33dfc2e8ceb1488b8cb5cd702266e4a9099a2ec239ede65cf1148127740e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pypy3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100230, "scanner": "repobility-docker", "fingerprint": "ef29c10c4a551ebf14350106a8210cc27814c5bc1b7fd1caf8c7bc8dbbe9e9bc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef29c10c4a551ebf14350106a8210cc27814c5bc1b7fd1caf8c7bc8dbbe9e9bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pypy3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100229, "scanner": "repobility-docker", "fingerprint": "56d4a27d8a731676660d7a42cc01ee36c37cac5016d0b3ed186e7f99a4444dd4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|56d4a27d8a731676660d7a42cc01ee36c37cac5016d0b3ed186e7f99a4444dd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyparsing/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100226, "scanner": "repobility-docker", "fingerprint": "0a939b509f48ef1bc216f41d17732c9f76e14d62a3a6293a16a40803ced980f6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a939b509f48ef1bc216f41d17732c9f76e14d62a3a6293a16a40803ced980f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyparsing/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100225, "scanner": "repobility-docker", "fingerprint": "08e6a59f843c288d526c2f9067c0326b8fdfb05fd47e0720af73dd7555583f36", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08e6a59f843c288d526c2f9067c0326b8fdfb05fd47e0720af73dd7555583f36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyodbc/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100222, "scanner": "repobility-docker", "fingerprint": "eeb68b0769d7e82ec24937bce3b0f3a63609c71d887a05504f009fddddbcce49", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eeb68b0769d7e82ec24937bce3b0f3a63609c71d887a05504f009fddddbcce49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pynacl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100220, "scanner": "repobility-docker", "fingerprint": "eed251c385e915048d8063bb800ac81b16792e33876497426ec85ef117a6b955", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eed251c385e915048d8063bb800ac81b16792e33876497426ec85ef117a6b955"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pynacl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100219, "scanner": "repobility-docker", "fingerprint": "efd350e2b37d34f35125a13506c8e6dc5f51b1d8c4b1df9b62bdeeb2d1f0bdd3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|efd350e2b37d34f35125a13506c8e6dc5f51b1d8c4b1df9b62bdeeb2d1f0bdd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pymysql/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100218, "scanner": "repobility-docker", "fingerprint": "f50ccb6e2a1e89d5c316d4b6e727c0ba45db2818e18341134ae2d3ecbcfa949c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f50ccb6e2a1e89d5c316d4b6e727c0ba45db2818e18341134ae2d3ecbcfa949c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pymysql/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100217, "scanner": "repobility-docker", "fingerprint": "01392f3511df86e7b100fbc3075a65f6f48b997e513d5329df1be8637c74147e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|01392f3511df86e7b100fbc3075a65f6f48b997e513d5329df1be8637c74147e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100214, "scanner": "repobility-docker", "fingerprint": "8fad936afe9bd378a508ccc4757b35a42ae24c394869ae2e37fee33031c87795", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fad936afe9bd378a508ccc4757b35a42ae24c394869ae2e37fee33031c87795"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100213, "scanner": "repobility-docker", "fingerprint": "1483c3ea48c25417630562fadf32f877f5b8ed45f36edf32396743fe6b41b18e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1483c3ea48c25417630562fadf32f877f5b8ed45f36edf32396743fe6b41b18e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjson5/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100212, "scanner": "repobility-docker", "fingerprint": "c84b713b522847074d53d0f3cfeeaadac4fa8eac3cf7ca308b1a28b860088362", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c84b713b522847074d53d0f3cfeeaadac4fa8eac3cf7ca308b1a28b860088362"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjson5/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100211, "scanner": "repobility-docker", "fingerprint": "7643d0b7676a772d125229e96c3a7decee011b49d07fcefded6bd57628b371aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7643d0b7676a772d125229e96c3a7decee011b49d07fcefded6bd57628b371aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pygments/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100209, "scanner": "repobility-docker", "fingerprint": "d510c7f4a95b78edb935d594d628a125bad528f06967b04d03a9a51b2afb627c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d510c7f4a95b78edb935d594d628a125bad528f06967b04d03a9a51b2afb627c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pygments/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100208, "scanner": "repobility-docker", "fingerprint": "1a4dcec7f4126a046f6c00fbe3df78332ffec35116bc14d1f9bbace80408f10a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a4dcec7f4126a046f6c00fbe3df78332ffec35116bc14d1f9bbace80408f10a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydateutil/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100207, "scanner": "repobility-docker", "fingerprint": "ff1f1b924252b3f80cd194895780b512bc2504c1baf5f56b893039a165a059d9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff1f1b924252b3f80cd194895780b512bc2504c1baf5f56b893039a165a059d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydateutil/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100206, "scanner": "repobility-docker", "fingerprint": "d459ba2a21e321fbabcd49a1bcb6b55cf4a795ab8eb1207fb7f423ee5332edc3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d459ba2a21e321fbabcd49a1bcb6b55cf4a795ab8eb1207fb7f423ee5332edc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydantic/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100205, "scanner": "repobility-docker", "fingerprint": "d3dfceb03ac18f43898c11f52554a1a91cabc17662da08d877f82944a761c2f8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3dfceb03ac18f43898c11f52554a1a91cabc17662da08d877f82944a761c2f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycups/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100203, "scanner": "repobility-docker", "fingerprint": "8a32473596bedfc15d1d1ae6f16ff94b9d337f06a39b03485db1dbcb8db14704", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a32473596bedfc15d1d1ae6f16ff94b9d337f06a39b03485db1dbcb8db14704"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycups/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100202, "scanner": "repobility-docker", "fingerprint": "8d422d960a0b82ea5adeff97551b4797e29b0f25d69c6c96d6db03bed852714a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d422d960a0b82ea5adeff97551b4797e29b0f25d69c6c96d6db03bed852714a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycryptodome/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100199, "scanner": "repobility-docker", "fingerprint": "f2e62fe9a6f2d8ff7662cf0a5f0b6dcaee044a10f50c6d1e0b15317acff45c36", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2e62fe9a6f2d8ff7662cf0a5f0b6dcaee044a10f50c6d1e0b15317acff45c36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycryptodome/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100198, "scanner": "repobility-docker", "fingerprint": "1adcc933b6a84a46a4e7330114d38712169a56421784a29fe442eca13e3af369", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d8fe5e2a6a96723f393de413c48d9455a5124995b2349a2e4d6b9abecf99d6d5", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1adcc933b6a84a46a4e7330114d38712169a56421784a29fe442eca13e3af369"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycrypto/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100197, "scanner": "repobility-docker", "fingerprint": "3142de1a941cf2832f10a8bdbdf73b52efdd48752c5320511224445790596bf0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3142de1a941cf2832f10a8bdbdf73b52efdd48752c5320511224445790596bf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycparser/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100196, "scanner": "repobility-docker", "fingerprint": "21d471aabe610e692129e77685db76a89495d3a8e8908cc52d9596ee3d072612", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21d471aabe610e692129e77685db76a89495d3a8e8908cc52d9596ee3d072612"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycparser/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100195, "scanner": "repobility-docker", "fingerprint": "ba45d0741d15347b9fcd2736c48eeaed89b7be8cb13ef08ff20e4d26a5eac29c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba45d0741d15347b9fcd2736c48eeaed89b7be8cb13ef08ff20e4d26a5eac29c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pybind11/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100192, "scanner": "repobility-docker", "fingerprint": "392535b5233d8c49654251d850da79177b137363c2cba7577d7501c988855ffd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|392535b5233d8c49654251d850da79177b137363c2cba7577d7501c988855ffd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1-modules/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100191, "scanner": "repobility-docker", "fingerprint": "979797e39936dd7842804a65c5094eb3424205cbf781f1d8afaf1a00d88fa97d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|979797e39936dd7842804a65c5094eb3424205cbf781f1d8afaf1a00d88fa97d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1-modules/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100190, "scanner": "repobility-docker", "fingerprint": "26045e77b9e0f05df05717924b7c79eb468f1d41f9b807d96e6c3b44258ffd13", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26045e77b9e0f05df05717924b7c79eb468f1d41f9b807d96e6c3b44258ffd13"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100187, "scanner": "repobility-docker", "fingerprint": "ef30d576d0eeb1b18d12c65495c2c12777430834fa4b547e4e5b409c8138039d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef30d576d0eeb1b18d12c65495c2c12777430834fa4b547e4e5b409c8138039d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100186, "scanner": "repobility-docker", "fingerprint": "c8498330ceb5ff110f0fa76e43b7aa19a26f0c2ad3302d0b4d288d477022d99c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8498330ceb5ff110f0fa76e43b7aa19a26f0c2ad3302d0b4d288d477022d99c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/py-serde/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100183, "scanner": "repobility-docker", "fingerprint": "1536eeda8b191f75b20d0a640389cd7e8fb7bf2c2ab67a854bacdd8abca09f17", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1536eeda8b191f75b20d0a640389cd7e8fb7bf2c2ab67a854bacdd8abca09f17"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/py-serde/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100182, "scanner": "repobility-docker", "fingerprint": "8e42ac075a53867e17ba98b87599b1816add71e54ea5c7c81dfbb71bba607830", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8e42ac075a53867e17ba98b87599b1816add71e54ea5c7c81dfbb71bba607830"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pupnp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100179, "scanner": "repobility-docker", "fingerprint": "0f1956c0bac8edf88cb10a868cbdde3ec887301129c3eb9cec3b6c22aee78074", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f1956c0bac8edf88cb10a868cbdde3ec887301129c3eb9cec3b6c22aee78074"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pupnp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100178, "scanner": "repobility-docker", "fingerprint": "437d765ad29fc24baaaf8b80df311d3470f800faf9f0276c8c8eed2a93cbac8a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|437d765ad29fc24baaaf8b80df311d3470f800faf9f0276c8c8eed2a93cbac8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pulumi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100177, "scanner": "repobility-docker", "fingerprint": "c9a8602d9f125d8246bd6b995f3dca1c82b92dbaf62aabb86fd4f0df704100ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9a8602d9f125d8246bd6b995f3dca1c82b92dbaf62aabb86fd4f0df704100ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pulumi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100176, "scanner": "repobility-docker", "fingerprint": "8b76e74e154a92e9e1ebd8b781539bbc1e59ae5b889f21a9c6066a566fe8ef27", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b76e74e154a92e9e1ebd8b781539bbc1e59ae5b889f21a9c6066a566fe8ef27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pulldown-cmark/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100175, "scanner": "repobility-docker", "fingerprint": "36c1c22d95b0b5579517c6b650704ffa22583900a8a37bb5553a3b1890b5ff12", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|36c1c22d95b0b5579517c6b650704ffa22583900a8a37bb5553a3b1890b5ff12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pulldown-cmark/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100174, "scanner": "repobility-docker", "fingerprint": "cac6d3d3f2e2ae49ea295c1affc3e6c4a324f9627467178438eee851d7e02bdd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cac6d3d3f2e2ae49ea295c1affc3e6c4a324f9627467178438eee851d7e02bdd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pugixml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100173, "scanner": "repobility-docker", "fingerprint": "77e4ec0ac7a5217b380632235a3ff1e6091e396bf4b128bb606c878c2cf065f0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77e4ec0ac7a5217b380632235a3ff1e6091e396bf4b128bb606c878c2cf065f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pugixml/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100172, "scanner": "repobility-docker", "fingerprint": "6c1dbb93c86a8b33687ba420128b83dc940b0bf3635bd78bed30ebd17a607b76", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c1dbb93c86a8b33687ba420128b83dc940b0bf3635bd78bed30ebd17a607b76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/publicsuffix-list/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100171, "scanner": "repobility-docker", "fingerprint": "0b80787cdcf2ca4b512e3bee0c531c06236fb9f6f0a51b33c03faa8c95a65c51", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b80787cdcf2ca4b512e3bee0c531c06236fb9f6f0a51b33c03faa8c95a65c51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/publicsuffix-list/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100170, "scanner": "repobility-docker", "fingerprint": "07c88ea8211cf2d55167640b1f2ad83055e9541cb429ec8b1cc37d08f0be01f8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07c88ea8211cf2d55167640b1f2ad83055e9541cb429ec8b1cc37d08f0be01f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psycopg2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100168, "scanner": "repobility-docker", "fingerprint": "a77d9c3ab0831bb4c5a32e1d3be17fde5a0285883aa378191879547457517c20", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a77d9c3ab0831bb4c5a32e1d3be17fde5a0285883aa378191879547457517c20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psycopg2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100167, "scanner": "repobility-docker", "fingerprint": "0b1863bb5ac8986e0e33899a848cca234fdf516fb73e5e1daf322a65958241a7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b1863bb5ac8986e0e33899a848cca234fdf516fb73e5e1daf322a65958241a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psutil/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100166, "scanner": "repobility-docker", "fingerprint": "702195f715a3fd84c7b5728532dc7417058a1e9643810905c5d388735bee8c41", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|702195f715a3fd84c7b5728532dc7417058a1e9643810905c5d388735bee8c41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psutil/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100165, "scanner": "repobility-docker", "fingerprint": "f9371b9e35766dc5e24ad3455e634c07ee481c8e3ffef1c1761e7c8189838315", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f9371b9e35766dc5e24ad3455e634c07ee481c8e3ffef1c1761e7c8189838315"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psqlparse/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100162, "scanner": "repobility-docker", "fingerprint": "1d4395d94019fdde3210f33f5bdda6f87256decba3903d04b9d285727a2c3402", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d4395d94019fdde3210f33f5bdda6f87256decba3903d04b9d285727a2c3402"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psqlparse/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100161, "scanner": "repobility-docker", "fingerprint": "efbec5afba3f4e30aaeba344fb0fc915906ef327e35c2f928b7b70d8f809be4e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|efbec5afba3f4e30aaeba344fb0fc915906ef327e35c2f928b7b70d8f809be4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proxygen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100156, "scanner": "repobility-docker", "fingerprint": "5a411c8974839d75f7502f1abbad39a6ba66ad0b2af522fe311813e30fa81fe1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a411c8974839d75f7502f1abbad39a6ba66ad0b2af522fe311813e30fa81fe1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proton-bridge/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100153, "scanner": "repobility-docker", "fingerprint": "53c0ce00f1be610bac205252f656b9132823e50b5a4deb4289217df38a5de8e3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53c0ce00f1be610bac205252f656b9132823e50b5a4deb4289217df38a5de8e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proton-bridge/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100152, "scanner": "repobility-docker", "fingerprint": "b1a77f6dbc7bd0f9248472376ae9191fc84c9e78f2db306b11f642fb50a4b6fe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b1a77f6dbc7bd0f9248472376ae9191fc84c9e78f2db306b11f642fb50a4b6fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protocompile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100151, "scanner": "repobility-docker", "fingerprint": "15f8628f58bfc8d2a56f922ee235a55a2c4810e243eb721dd187a65936adc0f8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|15f8628f58bfc8d2a56f922ee235a55a2c4810e243eb721dd187a65936adc0f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protocompile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100150, "scanner": "repobility-docker", "fingerprint": "1213109aa1e99009493fcc3482ac9fce208836e02afddc7019ea914638c56bb7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1213109aa1e99009493fcc3482ac9fce208836e02afddc7019ea914638c56bb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protoc-gen-validate/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100147, "scanner": "repobility-docker", "fingerprint": "64e8f8559cd0c2ddbe2c28163476b95444943beac805bc5d42b032e4f928b1c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64e8f8559cd0c2ddbe2c28163476b95444943beac805bc5d42b032e4f928b1c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protoc-gen-validate/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100146, "scanner": "repobility-docker", "fingerprint": "b730ca73922f5c3ff27bda79bd01a5bbd474e1cc0f771b129aa8128227ec3997", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b730ca73922f5c3ff27bda79bd01a5bbd474e1cc0f771b129aa8128227ec3997"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100145, "scanner": "repobility-docker", "fingerprint": "d5244bd9f4a2a2013284eed15d7991047bbb5b60ce381b69c9a078f94b8623ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5244bd9f4a2a2013284eed15d7991047bbb5b60ce381b69c9a078f94b8623ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100144, "scanner": "repobility-docker", "fingerprint": "2ab39e6ca1f8fca8d468dc4825b3c38005d06a81880c360105356c6fad7106fc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ab39e6ca1f8fca8d468dc4825b3c38005d06a81880c360105356c6fad7106fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100143, "scanner": "repobility-docker", "fingerprint": "2bf6a05d0ee5d74cfed456a6cfb2412f77116f95782aa5ad79d0b92e7d690648", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2bf6a05d0ee5d74cfed456a6cfb2412f77116f95782aa5ad79d0b92e7d690648"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100142, "scanner": "repobility-docker", "fingerprint": "c38c70e23c87b9af914642fa58d626b88340c1c9ec9b72adea161e2a8b5cfa6b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c38c70e23c87b9af914642fa58d626b88340c1c9ec9b72adea161e2a8b5cfa6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100141, "scanner": "repobility-docker", "fingerprint": "72f4543e24f0a250a9f43f96fc024a7bceb04eac41a7f416145a6e2776ff0c44", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|72f4543e24f0a250a9f43f96fc024a7bceb04eac41a7f416145a6e2776ff0c44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100138, "scanner": "repobility-docker", "fingerprint": "f523e9a6eb8e176120c947719d3c5d5aee6bf18cdda0c04f33c5a725fcc6038f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f523e9a6eb8e176120c947719d3c5d5aee6bf18cdda0c04f33c5a725fcc6038f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100137, "scanner": "repobility-docker", "fingerprint": "d4d35fbad518c7704601b5b754a6910b308b7104273e338077485c7b9ac756d5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4d35fbad518c7704601b5b754a6910b308b7104273e338077485c7b9ac756d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proto-plus-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100136, "scanner": "repobility-docker", "fingerprint": "1b79978f9d443e3c9339d44eb3306bb512f63711478ca94224440d9456f27a85", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b79978f9d443e3c9339d44eb3306bb512f63711478ca94224440d9456f27a85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proto-plus-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100135, "scanner": "repobility-docker", "fingerprint": "a75c5dd858bfb68ccfe95835474316d5cfe9a7ddbfc681ffcc61f05856f2bf76", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a75c5dd858bfb68ccfe95835474316d5cfe9a7ddbfc681ffcc61f05856f2bf76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prost/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100132, "scanner": "repobility-docker", "fingerprint": "93647892ab3c29d507d6031e0412baa5ddceb84e74686c11d9126aa2f4150052", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93647892ab3c29d507d6031e0412baa5ddceb84e74686c11d9126aa2f4150052"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prost/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100131, "scanner": "repobility-docker", "fingerprint": "e0f67ba34573d5becda5058c2758576224ca839ba37931cfdcaa7f4698a2ad48", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0f67ba34573d5becda5058c2758576224ca839ba37931cfdcaa7f4698a2ad48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/promise-polyfill/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100130, "scanner": "repobility-docker", "fingerprint": "eb89af4557d7de9ccc4be11ac368edba77cb53a5d9aa5b960ed942fbb9dec7ec", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb89af4557d7de9ccc4be11ac368edba77cb53a5d9aa5b960ed942fbb9dec7ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/promise-polyfill/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100129, "scanner": "repobility-docker", "fingerprint": "da080e69bc155017a1cadfbd5bbd49ebb4bff6f4ebb8d0acfd7d9b21b0587df3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|da080e69bc155017a1cadfbd5bbd49ebb4bff6f4ebb8d0acfd7d9b21b0587df3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prometheus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100128, "scanner": "repobility-docker", "fingerprint": "cad715a9dfb71723e5a337034103b3143c4960dacf0f98a9330487498b754e29", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cad715a9dfb71723e5a337034103b3143c4960dacf0f98a9330487498b754e29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prometheus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100127, "scanner": "repobility-docker", "fingerprint": "a24b5a0ff8e957d6d4ca8c8c1e8e58f0e3959dcf151eb428d0852a08769aba88", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a24b5a0ff8e957d6d4ca8c8c1e8e58f0e3959dcf151eb428d0852a08769aba88"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proj4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100124, "scanner": "repobility-docker", "fingerprint": "65daeecf0f3dac3392e1e9c67013a48aadd7a169d8f6a367493cef89e155adac", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|65daeecf0f3dac3392e1e9c67013a48aadd7a169d8f6a367493cef89e155adac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proj4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100123, "scanner": "repobility-docker", "fingerprint": "a62ce5958671cccab1df4a7e3a07916770610dd70d44a245ed32e527799c1871", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a62ce5958671cccab1df4a7e3a07916770610dd70d44a245ed32e527799c1871"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proftpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100120, "scanner": "repobility-docker", "fingerprint": "8f705289f7ad03c3e2de39ce656216533dee27d89101fb7ce07648428110c411", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f705289f7ad03c3e2de39ce656216533dee27d89101fb7ce07648428110c411"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proftpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100119, "scanner": "repobility-docker", "fingerprint": "32e4267eeee1a3686af5417480a86fcc51bc7c73bbdc791618dfc36d20ea63d4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|32e4267eeee1a3686af5417480a86fcc51bc7c73bbdc791618dfc36d20ea63d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/presto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100116, "scanner": "repobility-docker", "fingerprint": "ffa5c0e815b92aa464145320516958f625a4597b4d42d3358d5e62cc890c7b2c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ffa5c0e815b92aa464145320516958f625a4597b4d42d3358d5e62cc890c7b2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powsybl-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100115, "scanner": "repobility-docker", "fingerprint": "dd40e9623157b46171ad4010a4d3656973301a39aac0907fe6152d999625d0f6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd40e9623157b46171ad4010a4d3656973301a39aac0907fe6152d999625d0f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powerdns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100111, "scanner": "repobility-docker", "fingerprint": "0b775f39e6ee83deb98726d3680f2065076c76d127036c9e64bf8bf76d9dc442", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b775f39e6ee83deb98726d3680f2065076c76d127036c9e64bf8bf76d9dc442"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powerdns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100110, "scanner": "repobility-docker", "fingerprint": "87b0dbee5ed2a66925ff7c299c9902956ddc23e2d9d235f1a35ee5195e0ec3a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87b0dbee5ed2a66925ff7c299c9902956ddc23e2d9d235f1a35ee5195e0ec3a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postgresql/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100107, "scanner": "repobility-docker", "fingerprint": "12653dd3f9a86fb25c75e89cce7c7dc7b9101cef0337d6f852f09a428279f900", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12653dd3f9a86fb25c75e89cce7c7dc7b9101cef0337d6f852f09a428279f900"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postgis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100106, "scanner": "repobility-docker", "fingerprint": "228a8a8efcee528042764f598941f07050726ca072c647d0ec5f5ecdec097b1a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|228a8a8efcee528042764f598941f07050726ca072c647d0ec5f5ecdec097b1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postfix/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100103, "scanner": "repobility-docker", "fingerprint": "9ccb60b7a2b249c1ef836dbb2b70010f5c2103c30ed08e332a11c374ae2199a2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ccb60b7a2b249c1ef836dbb2b70010f5c2103c30ed08e332a11c374ae2199a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postcss/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100102, "scanner": "repobility-docker", "fingerprint": "27d8afd1c5d041ce4e929e557c26d2aa67cfe79fd3ef4d4c5405ed65e9062db8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|27d8afd1c5d041ce4e929e557c26d2aa67cfe79fd3ef4d4c5405ed65e9062db8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postcss/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100101, "scanner": "repobility-docker", "fingerprint": "13cb7ef5458881d77bd069a3246921434633ff79ad1031ed896ed05619aa13a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13cb7ef5458881d77bd069a3246921434633ff79ad1031ed896ed05619aa13a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poppler/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100100, "scanner": "repobility-docker", "fingerprint": "83f6afedbae87a2c76442871a2fda8185506b2bfc77edc4edc8931c8b7768f7a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|83f6afedbae87a2c76442871a2fda8185506b2bfc77edc4edc8931c8b7768f7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poppler/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100099, "scanner": "repobility-docker", "fingerprint": "021721fd65719d9882c1c2f5ec48f38dd72946c395093db566b45521a0458ea7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|021721fd65719d9882c1c2f5ec48f38dd72946c395093db566b45521a0458ea7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poco/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100096, "scanner": "repobility-docker", "fingerprint": "b5d8e8d3c7f389fcb9650cba3e5e816c246e5ef84f2fb9c533d21b185978e765", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b5d8e8d3c7f389fcb9650cba3e5e816c246e5ef84f2fb9c533d21b185978e765"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poco/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100095, "scanner": "repobility-docker", "fingerprint": "e4638e2ad23df6457c8f315cf243ba895e149c0b80965605e634c3ff4cc84043", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4638e2ad23df6457c8f315cf243ba895e149c0b80965605e634c3ff4cc84043"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pngquant/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100092, "scanner": "repobility-docker", "fingerprint": "c7e56383f989612651f8d550826b68c134bf497ee2ed478029a1a1bf107c1fb5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7e56383f989612651f8d550826b68c134bf497ee2ed478029a1a1bf107c1fb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ply/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100091, "scanner": "repobility-docker", "fingerprint": "e971373535e49b2118b813a2d633805968c652ecec196b86200ad92765315fb0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e971373535e49b2118b813a2d633805968c652ecec196b86200ad92765315fb0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ply/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100090, "scanner": "repobility-docker", "fingerprint": "00c6607fd3d17c076004a40b4b2b204337510e96d520a3942961e639a59904bc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|00c6607fd3d17c076004a40b4b2b204337510e96d520a3942961e639a59904bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plexus-utils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100089, "scanner": "repobility-docker", "fingerprint": "98c15fc8eb3683f8ff81a1359f73f3d1f76cf50fe612c4bfdd1457b5d4772213", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98c15fc8eb3683f8ff81a1359f73f3d1f76cf50fe612c4bfdd1457b5d4772213"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plexus-utils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100088, "scanner": "repobility-docker", "fingerprint": "ccd1f672845be3384382875924044a9dacd7053515dabd0956adda5c8d1b2a27", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ccd1f672845be3384382875924044a9dacd7053515dabd0956adda5c8d1b2a27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plan9port/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100085, "scanner": "repobility-docker", "fingerprint": "e55c33b6922dbc080465c9b232bb2baff3d57ccc438a24c22086dc5ab01129c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e55c33b6922dbc080465c9b232bb2baff3d57ccc438a24c22086dc5ab01129c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plan9port/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100084, "scanner": "repobility-docker", "fingerprint": "33adb7f39a7bfa572acd0ff5457ad2d7a317490587788e7407d8dedba6031bc7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33adb7f39a7bfa572acd0ff5457ad2d7a317490587788e7407d8dedba6031bc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pjsip/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100081, "scanner": "repobility-docker", "fingerprint": "e45a71d200067c8789409b1aca7c6f561f363261ee75e1cfbcd20d7bb98321aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e45a71d200067c8789409b1aca7c6f561f363261ee75e1cfbcd20d7bb98321aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pistache/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100078, "scanner": "repobility-docker", "fingerprint": "19d7f5cd8dd1ccdeaa9f136b82a8e5f7783d8dfb37a4fa5a5fa595220b74834d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19d7f5cd8dd1ccdeaa9f136b82a8e5f7783d8dfb37a4fa5a5fa595220b74834d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pistache/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100077, "scanner": "repobility-docker", "fingerprint": "955e0306b17a51528074e5997e7b59897701b9adb032b54b1d4a225f253d9ea9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|955e0306b17a51528074e5997e7b59897701b9adb032b54b1d4a225f253d9ea9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100076, "scanner": "repobility-docker", "fingerprint": "6cb864282a62277e2bb8aebb5e1457cc342309b2b23055fe10e7676d2e694f24", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6cb864282a62277e2bb8aebb5e1457cc342309b2b23055fe10e7676d2e694f24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100075, "scanner": "repobility-docker", "fingerprint": "ae5c804164d117aab11882c2740e724d6bd601e8728f1dac6a42c0739bc59647", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae5c804164d117aab11882c2740e724d6bd601e8728f1dac6a42c0739bc59647"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100069, "scanner": "repobility-docker", "fingerprint": "e6116c5e6d8db2e912afed0fabde18e1ac8c35cccfbd494fbd9df51f7b899a46", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e6116c5e6d8db2e912afed0fabde18e1ac8c35cccfbd494fbd9df51f7b899a46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100068, "scanner": "repobility-docker", "fingerprint": "bb3947c35b7456c592a1887ebe797bceb42e496f9fc618edacb7915d726feff9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bb3947c35b7456c592a1887ebe797bceb42e496f9fc618edacb7915d726feff9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pikepdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100067, "scanner": "repobility-docker", "fingerprint": "b73f72f6a2d459956645c38369af078f85803901612bbc77d0422b9af692ef91", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b73f72f6a2d459956645c38369af078f85803901612bbc77d0422b9af692ef91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pigweed/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100064, "scanner": "repobility-docker", "fingerprint": "caffca3a95e80aac7276c8bdf70565b8a9f62eb981e1db31b5a0b72ae29e7052", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|caffca3a95e80aac7276c8bdf70565b8a9f62eb981e1db31b5a0b72ae29e7052"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 100063, "scanner": "repobility-docker", "fingerprint": "4a1f37995c44e8447b3305db83a1eebd79fa960007ac05a4eb479791ef4eb2da", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a1f37995c44e8447b3305db83a1eebd79fa960007ac05a4eb479791ef4eb2da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100060, "scanner": "repobility-docker", "fingerprint": "0eeaf29a514eba94ebfbdc6d3a9a3276d955124dd1c6827afbb303937378ef59", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0eeaf29a514eba94ebfbdc6d3a9a3276d955124dd1c6827afbb303937378ef59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100059, "scanner": "repobility-docker", "fingerprint": "c845de999999ea94c603ca1a7c5060ec9c579437d7c9c0bf496125620ad5cfc2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c845de999999ea94c603ca1a7c5060ec9c579437d7c9c0bf496125620ad5cfc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pidgin/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100057, "scanner": "repobility-docker", "fingerprint": "90affd8f11a9c663d5b34298d7780338b18f8a8813b5e07dc0eb5300658fc284", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90affd8f11a9c663d5b34298d7780338b18f8a8813b5e07dc0eb5300658fc284"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pidgin/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100056, "scanner": "repobility-docker", "fingerprint": "d1d7636b2319322e2ed6d515457fd2af0054206cf3d9c5091c0dad4fb5b3147a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d1d7636b2319322e2ed6d515457fd2af0054206cf3d9c5091c0dad4fb5b3147a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/picotls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100053, "scanner": "repobility-docker", "fingerprint": "957e89bdff6ed5ed8096f174dbd6ac1bb36656eebd5e4ea7d867664c226520de", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|957e89bdff6ed5ed8096f174dbd6ac1bb36656eebd5e4ea7d867664c226520de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/picotls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100052, "scanner": "repobility-docker", "fingerprint": "aafae581db6b0ad026964139eae7f0b4780c343b28b9370e59e12a5ffa3c1b60", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aafae581db6b0ad026964139eae7f0b4780c343b28b9370e59e12a5ffa3c1b60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/php/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100049, "scanner": "repobility-docker", "fingerprint": "fbe189be6c6bd6d4b8d5363c2e4458cf8151b42ae0573188eeca1a697e8a0363", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbe189be6c6bd6d4b8d5363c2e4458cf8151b42ae0573188eeca1a697e8a0363"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/php/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100048, "scanner": "repobility-docker", "fingerprint": "7bcac1a5b9cd0f258629ddb7d9dfe9849c5f2d498af8775271dc3e224a5fbdb3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7bcac1a5b9cd0f258629ddb7d9dfe9849c5f2d498af8775271dc3e224a5fbdb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/phosphor-host-ipmid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100045, "scanner": "repobility-docker", "fingerprint": "fee9ff440f913dcc45b738750f42a6b95233e110f82d701e5faf84e72cc61dd3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fee9ff440f913dcc45b738750f42a6b95233e110f82d701e5faf84e72cc61dd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/phmap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100044, "scanner": "repobility-docker", "fingerprint": "709bf58166cd63273ee04ee54a16d738f70b288e6ebb2779e7685b3cb888cea3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|709bf58166cd63273ee04ee54a16d738f70b288e6ebb2779e7685b3cb888cea3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/phmap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100043, "scanner": "repobility-docker", "fingerprint": "886a19fb821be647ab795bf4beadd9ba7991165c7746dc6b51a621ff222067dc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|886a19fb821be647ab795bf4beadd9ba7991165c7746dc6b51a621ff222067dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pffft/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100039, "scanner": "repobility-docker", "fingerprint": "d2c576d2a3dea63a6211fc89db8edb6f5abb95c6f2ecae8d7a10490fd86df03c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2c576d2a3dea63a6211fc89db8edb6f5abb95c6f2ecae8d7a10490fd86df03c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pest/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100038, "scanner": "repobility-docker", "fingerprint": "232ff684af35e1c0ff597b6047eb87ced3d0aae3a5bbc60e5b067625cc1da3f0", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|232ff684af35e1c0ff597b6047eb87ced3d0aae3a5bbc60e5b067625cc1da3f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pest/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100037, "scanner": "repobility-docker", "fingerprint": "3dbfca89e7eb3f0f99f23379194c2df20f0dc6d38c6b1568c368c292843bf489", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dbfca89e7eb3f0f99f23379194c2df20f0dc6d38c6b1568c368c292843bf489"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pest/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100036, "scanner": "repobility-docker", "fingerprint": "3179bfbd53744507be9100f0bf301b4ef306fd87bdd8c538cbd27a3b6e08534d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3179bfbd53744507be9100f0bf301b4ef306fd87bdd8c538cbd27a3b6e08534d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/perfetto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 100035, "scanner": "repobility-docker", "fingerprint": "082510bb62689693fb9fd7a1102cee244845423bcae4af7d346b015202637477", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|082510bb62689693fb9fd7a1102cee244845423bcae4af7d346b015202637477"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/perfetto/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100034, "scanner": "repobility-docker", "fingerprint": "cc30724ce948b617e6fa115873639d7e9bf914b6fcf574c5b9db7563c19acde2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cc30724ce948b617e6fa115873639d7e9bf914b6fcf574c5b9db7563c19acde2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/perfetto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100033, "scanner": "repobility-docker", "fingerprint": "7731f8001c83e80e76ca73734cbaa1f27ff6ca2e4e25d977dba9264f90b66c68", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7731f8001c83e80e76ca73734cbaa1f27ff6ca2e4e25d977dba9264f90b66c68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pendulum/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100032, "scanner": "repobility-docker", "fingerprint": "14553674131cb99ca4c4b83d3aba8bd2b620d1ec83d9df18a0f078f1a5f418f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|14553674131cb99ca4c4b83d3aba8bd2b620d1ec83d9df18a0f078f1a5f418f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pendulum/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100031, "scanner": "repobility-docker", "fingerprint": "7191f461dbf79077888de4f35734420d085359cf36e650a6ca127952983f5887", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7191f461dbf79077888de4f35734420d085359cf36e650a6ca127952983f5887"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pem/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100027, "scanner": "repobility-docker", "fingerprint": "a373c6204b4cb330377a2cbaa6e3f2568a63529bb503b9f3c4342628705da39f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a373c6204b4cb330377a2cbaa6e3f2568a63529bb503b9f3c4342628705da39f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pem/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100026, "scanner": "repobility-docker", "fingerprint": "214b38b61ce26d2932983b064dcf3c8419276aef763b2c2846c4f6188740d604", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|214b38b61ce26d2932983b064dcf3c8419276aef763b2c2846c4f6188740d604"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdoc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100025, "scanner": "repobility-docker", "fingerprint": "ef1a091599dad1bc050d961a7cdf678a0384bacc7628077667c8f8a5a5d217f7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef1a091599dad1bc050d961a7cdf678a0384bacc7628077667c8f8a5a5d217f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdoc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100024, "scanner": "repobility-docker", "fingerprint": "2531c27e30bf82e2def243d8c2e483edc73e7a9eb7fee730c3e52a41da3cba57", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2531c27e30bf82e2def243d8c2e483edc73e7a9eb7fee730c3e52a41da3cba57"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfplumber/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100023, "scanner": "repobility-docker", "fingerprint": "11b93390a249921bd8d230167c9206997683cdca5f60235984c0ed71fcc3277b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11b93390a249921bd8d230167c9206997683cdca5f60235984c0ed71fcc3277b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfplumber/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100022, "scanner": "repobility-docker", "fingerprint": "607dd65c26e4251fc81395af0abbefb7885c3c414d86f873e9bbfbf2672ce162", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|607dd65c26e4251fc81395af0abbefb7885c3c414d86f873e9bbfbf2672ce162"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfminersix/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100021, "scanner": "repobility-docker", "fingerprint": "c5d9c2c32227b71447ade7c347da879a5f2a4a8a8b97a05d916b62a166ff083e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5d9c2c32227b71447ade7c347da879a5f2a4a8a8b97a05d916b62a166ff083e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfminersix/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100020, "scanner": "repobility-docker", "fingerprint": "2590aa4544ec2d0298e6d2b61ff399de1dbdc84dbe8deed28a7246462d37c224", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2590aa4544ec2d0298e6d2b61ff399de1dbdc84dbe8deed28a7246462d37c224"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfbox/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100019, "scanner": "repobility-docker", "fingerprint": "04d8e733d618b9b34eb90b00ba80935c15a2ec276c42d57d0d1644b2895fd4df", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04d8e733d618b9b34eb90b00ba80935c15a2ec276c42d57d0d1644b2895fd4df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfbox/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100017, "scanner": "repobility-docker", "fingerprint": "1b790aa03c80d35366089cf08f03257726085def3d0ce707ed08befed9d7e418", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b790aa03c80d35366089cf08f03257726085def3d0ce707ed08befed9d7e418"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdf-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100014, "scanner": "repobility-docker", "fingerprint": "3510da86f15257a148d5a4c2e55769b637865c2918776d5e91cea01343b85961", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3510da86f15257a148d5a4c2e55769b637865c2918776d5e91cea01343b85961"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdf-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100013, "scanner": "repobility-docker", "fingerprint": "2272b8f875a7436aab9729e7ff0e769e22fd40e937db8f96ee36cfd05d353c89", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2272b8f875a7436aab9729e7ff0e769e22fd40e937db8f96ee36cfd05d353c89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcre2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100010, "scanner": "repobility-docker", "fingerprint": "4c55528905e20baaa3cc5e98471a93ba2d171c1393973917448e4edea9693718", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c55528905e20baaa3cc5e98471a93ba2d171c1393973917448e4edea9693718"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcre2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100009, "scanner": "repobility-docker", "fingerprint": "8f7f55d0c48c314ea9c0e68cec3cbdbaf648836b664544cc6c75641ace3bfb52", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f7f55d0c48c314ea9c0e68cec3cbdbaf648836b664544cc6c75641ace3bfb52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100004, "scanner": "repobility-docker", "fingerprint": "0bbfe0ba51892f053fe96646332dd1375196ddc96e365f51dd02c4fa93bd2b2a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0bbfe0ba51892f053fe96646332dd1375196ddc96e365f51dd02c4fa93bd2b2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcapplusplus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 100001, "scanner": "repobility-docker", "fingerprint": "e41780b67af6475ba7d208ddb86de4cd88083b71672186576bcb93031b380036", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e41780b67af6475ba7d208ddb86de4cd88083b71672186576bcb93031b380036"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcapplusplus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 100000, "scanner": "repobility-docker", "fingerprint": "f610c1894444be9df01345ea8f7a11101b4817758d36704adccb40cd4fe81ea0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f610c1894444be9df01345ea8f7a11101b4817758d36704adccb40cd4fe81ea0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pborman-uuid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99999, "scanner": "repobility-docker", "fingerprint": "bdc5b29d4c47530e38566b8e21d77c50603bed0583bc0a334e35e18cb69613bb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bdc5b29d4c47530e38566b8e21d77c50603bed0583bc0a334e35e18cb69613bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pborman-uuid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99998, "scanner": "repobility-docker", "fingerprint": "f6c88bc1bf426041d550956725d131a92830278a52e935b6603412d962583b9d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6c88bc1bf426041d550956725d131a92830278a52e935b6603412d962583b9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pathlib2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99997, "scanner": "repobility-docker", "fingerprint": "db88b790d3c06eb65bdf0afbb71ffc9c0d4829c5774c2e67bdb991934674741b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db88b790d3c06eb65bdf0afbb71ffc9c0d4829c5774c2e67bdb991934674741b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pathlib2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99996, "scanner": "repobility-docker", "fingerprint": "023ba0b4a0f61912e57220d2d25435f6f5fed529b12cd58f22a0b2cd37271b88", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|023ba0b4a0f61912e57220d2d25435f6f5fed529b12cd58f22a0b2cd37271b88"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pasta/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99995, "scanner": "repobility-docker", "fingerprint": "896dedd4dce4a5c62040c6b7763603dd570439c587d78aaf00cd91da05e79bf2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|896dedd4dce4a5c62040c6b7763603dd570439c587d78aaf00cd91da05e79bf2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pasta/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99994, "scanner": "repobility-docker", "fingerprint": "6d099d47ee42357c248c5bfc0aec3cacaabe900868d8f801af1288d7904d4ca0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d099d47ee42357c248c5bfc0aec3cacaabe900868d8f801af1288d7904d4ca0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parso/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99993, "scanner": "repobility-docker", "fingerprint": "37677e1d2db6a7e7823ee98d199f5b39e19f2a4eb0fa9f080a7406ddb644d92a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37677e1d2db6a7e7823ee98d199f5b39e19f2a4eb0fa9f080a7406ddb644d92a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parso/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99992, "scanner": "repobility-docker", "fingerprint": "2d45b45f1cfacaa8c13e26f5d8f2dfa61442a8d000c87d03f6e6b5b752379ca1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d45b45f1cfacaa8c13e26f5d8f2dfa61442a8d000c87d03f6e6b5b752379ca1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parsimonious/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99991, "scanner": "repobility-docker", "fingerprint": "7a5992733011840239fa9d9ae245c167219b8aaacafe02ebd0f49c26e2cfeeb1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a5992733011840239fa9d9ae245c167219b8aaacafe02ebd0f49c26e2cfeeb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parsimonious/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99990, "scanner": "repobility-docker", "fingerprint": "3855b5cb818e540abb7c8c526798b5f5a00bfcda17436f2b254ae5b36ec66a36", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3855b5cb818e540abb7c8c526798b5f5a00bfcda17436f2b254ae5b36ec66a36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99989, "scanner": "repobility-docker", "fingerprint": "18b0070aeac51ef1d70445ff3068a2253d86f7770d536c2db2b646b672e3e20c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18b0070aeac51ef1d70445ff3068a2253d86f7770d536c2db2b646b672e3e20c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/parse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99988, "scanner": "repobility-docker", "fingerprint": "bc9d149b0acc3bf8716544cdad64e3c9d20db4523e7af8af67fb8e2bbbf60c41", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc9d149b0acc3bf8716544cdad64e3c9d20db4523e7af8af67fb8e2bbbf60c41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/paramiko/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99985, "scanner": "repobility-docker", "fingerprint": "6d45b35fa943f41e09214aadc1bf1444b13068a92f4de5eeff9998d0765160ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d45b35fa943f41e09214aadc1bf1444b13068a92f4de5eeff9998d0765160ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/paramiko/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99984, "scanner": "repobility-docker", "fingerprint": "d5c24213534b2f2dd5e40a148fd377f8a239f35b5b90c5020d61729a9dbd292f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5c24213534b2f2dd5e40a148fd377f8a239f35b5b90c5020d61729a9dbd292f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99977, "scanner": "repobility-docker", "fingerprint": "a44505ec81266b07ebb206bc5415c5c5a58fbf27f4ab7f31b2aafd51dd204f61", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a44505ec81266b07ebb206bc5415c5c5a58fbf27f4ab7f31b2aafd51dd204f61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99976, "scanner": "repobility-docker", "fingerprint": "e5cc00a3c7040889834bfdc68312145e9612777ede6c35401264e30cae2dcee9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e5cc00a3c7040889834bfdc68312145e9612777ede6c35401264e30cae2dcee9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pako/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99975, "scanner": "repobility-docker", "fingerprint": "ad9eae4d36c6b9caa99b683e468c488d6eed40bf1d1d54d220bad93903d5c086", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad9eae4d36c6b9caa99b683e468c488d6eed40bf1d1d54d220bad93903d5c086"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pako/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99974, "scanner": "repobility-docker", "fingerprint": "8d656efbbc672d6a11672f1ab3083a395f5d2651bb740fcf3a40395846ca835e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d656efbbc672d6a11672f1ab3083a395f5d2651bb740fcf3a40395846ca835e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/packaging/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99973, "scanner": "repobility-docker", "fingerprint": "f67e68365e3c9738ff139169dbceeaaa2a8c049c78761b09d16d46d350896f63", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f67e68365e3c9738ff139169dbceeaaa2a8c049c78761b09d16d46d350896f63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pacemaker/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99969, "scanner": "repobility-docker", "fingerprint": "c27de2f4d14375f0adf3026166ea15ec56e30682e16d71ecac4750ab304ac727", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c27de2f4d14375f0adf3026166ea15ec56e30682e16d71ecac4750ab304ac727"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pacemaker/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99968, "scanner": "repobility-docker", "fingerprint": "f6a3bfe28310944745b8afe69db7aff13feef7e8c5558fd4809522e6a3e3f8bd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6a3bfe28310944745b8afe69db7aff13feef7e8c5558fd4809522e6a3e3f8bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p9/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99967, "scanner": "repobility-docker", "fingerprint": "aeef009c6d87caa02a179cd5077efdb2021c83e59e898a6c1bc155176f2bc139", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aeef009c6d87caa02a179cd5077efdb2021c83e59e898a6c1bc155176f2bc139"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p9/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99966, "scanner": "repobility-docker", "fingerprint": "4bced8c89d2174831245c1a8e982f92d82e6b04bc4cc686327d314a4f889b76c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4bced8c89d2174831245c1a8e982f92d82e6b04bc4cc686327d314a4f889b76c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p11-kit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99962, "scanner": "repobility-docker", "fingerprint": "c99daf9d01756758f8cbfd4961c6a8e55c63d76e8b19baa82af52cbb6c9584fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c99daf9d01756758f8cbfd4961c6a8e55c63d76e8b19baa82af52cbb6c9584fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p11-kit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99961, "scanner": "repobility-docker", "fingerprint": "a07bf1bd26181ee5b353a0b5ad49e6ddd376facf1a34de0fa861e2b5947ab58f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a07bf1bd26181ee5b353a0b5ad49e6ddd376facf1a34de0fa861e2b5947ab58f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oxia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99960, "scanner": "repobility-docker", "fingerprint": "1863433636dbfdd79e00821e9002113ecce50e7d26cad1f13c6233c6ce05c36f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1863433636dbfdd79e00821e9002113ecce50e7d26cad1f13c6233c6ce05c36f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oxia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99959, "scanner": "repobility-docker", "fingerprint": "5977561365f239e57068ff6f7f52459241a62ed7d739af3fd954903f14be585b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-ruby", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5977561365f239e57068ff6f7f52459241a62ed7d739af3fd954903f14be585b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ox-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99958, "scanner": "repobility-docker", "fingerprint": "e4ddbc84cd7b6c90a2d80ee054e270be3027aea5054ff9db36729349bf8a3a0c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-ruby", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4ddbc84cd7b6c90a2d80ee054e270be3027aea5054ff9db36729349bf8a3a0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ox-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99957, "scanner": "repobility-docker", "fingerprint": "c2e9b5f574a650f49ac218b8095ef6047eb1f63638b731b7bbcc65b9d7ca3a1f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2e9b5f574a650f49ac218b8095ef6047eb1f63638b731b7bbcc65b9d7ca3a1f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ots/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99954, "scanner": "repobility-docker", "fingerprint": "b56f8672b781de625c8364a6c5883d5e249883f9bab68648d3c35061684453c5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b56f8672b781de625c8364a6c5883d5e249883f9bab68648d3c35061684453c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ots/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99953, "scanner": "repobility-docker", "fingerprint": "ead275cfd56dbaea8ae1ad5e0a3a0e147cefa2a24b8bb4937bead2e5da8d2af5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ead275cfd56dbaea8ae1ad5e0a3a0e147cefa2a24b8bb4937bead2e5da8d2af5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ostree/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99950, "scanner": "repobility-docker", "fingerprint": "fafa6ecb0e12ca36bc9c085b9e529bf3c512ae18d1ac86a433a3d3797a51698d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fafa6ecb0e12ca36bc9c085b9e529bf3c512ae18d1ac86a433a3d3797a51698d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ostree/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99949, "scanner": "repobility-docker", "fingerprint": "c0ce0fc9fbee08502551560718b70eb76fd6fbb1b8aefabac316033d4eacffb1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c0ce0fc9fbee08502551560718b70eb76fd6fbb1b8aefabac316033d4eacffb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ossf-scorecard/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99948, "scanner": "repobility-docker", "fingerprint": "10e08daea1872be5d2a49e97729fb9ce69a32c15c9b1d2d497a60e05b9b24d5a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10e08daea1872be5d2a49e97729fb9ce69a32c15c9b1d2d497a60e05b9b24d5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oss-fuzz-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99945, "scanner": "repobility-docker", "fingerprint": "f8e37c8b6af0d5e978cd72bcf5fe9fb77b4c4b13e2f7aaedb21953d90da48817", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f8e37c8b6af0d5e978cd72bcf5fe9fb77b4c4b13e2f7aaedb21953d90da48817"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oss-fuzz-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99944, "scanner": "repobility-docker", "fingerprint": "204823480261df23100ccf8a41b0a39ab57b99d025a33e20b7a3143082ea64fb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:d34b94e3cf868e49d2928c76ddba41fd4154907a1a381b3a263fafffb7c3dce0", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|204823480261df23100ccf8a41b0a39ab57b99d025a33e20b7a3143082ea64fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/osquery/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99942, "scanner": "repobility-docker", "fingerprint": "e621a220e248e72bc0fa03210247973b8c967aa28de1da54db6890dfef059666", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e621a220e248e72bc0fa03210247973b8c967aa28de1da54db6890dfef059666"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/osgi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99941, "scanner": "repobility-docker", "fingerprint": "080e0a2e4d857d24e573fab2eec3b5d457af578f47e3c2ccace9cc8145c32ea4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|080e0a2e4d857d24e573fab2eec3b5d457af578f47e3c2ccace9cc8145c32ea4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/osgi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99940, "scanner": "repobility-docker", "fingerprint": "779858350d6538e6b84883e84304819e9b6d872a394028459da68cce4fbfc9d5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|779858350d6538e6b84883e84304819e9b6d872a394028459da68cce4fbfc9d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oscrypto/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99939, "scanner": "repobility-docker", "fingerprint": "ac7b5938553bac44e7731b6e4d670b6ca722b40624c6203873133d537f5cdf0b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac7b5938553bac44e7731b6e4d670b6ca722b40624c6203873133d537f5cdf0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oscrypto/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99938, "scanner": "repobility-docker", "fingerprint": "10b1b5affb4a553b5824454db7227204bd19689c2202bea1f2e11eeecc78f5fc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10b1b5affb4a553b5824454db7227204bd19689c2202bea1f2e11eeecc78f5fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/orjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99933, "scanner": "repobility-docker", "fingerprint": "3b8e1acc0be8b58541b45a369845de515beb3bc3cd9d4954804bd25b9282252a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b8e1acc0be8b58541b45a369845de515beb3bc3cd9d4954804bd25b9282252a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oracle-py-cx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99930, "scanner": "repobility-docker", "fingerprint": "d64ad78bd46632ef51b33e77eb2ad46d5d1fdde5daf68cab42baa640e9363b09", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d64ad78bd46632ef51b33e77eb2ad46d5d1fdde5daf68cab42baa640e9363b09"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oracle-py-cx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99929, "scanner": "repobility-docker", "fingerprint": "21b1e9cb03af23a1745489cca1c5b6d49b2b62a4dcd32dee634d3aeabdb0d11e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21b1e9cb03af23a1745489cca1c5b6d49b2b62a4dcd32dee634d3aeabdb0d11e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opusfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99926, "scanner": "repobility-docker", "fingerprint": "449e59bf254d2b5eda2b22282546075a89bb6fabe7728b0569cb52c34a63be7c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|449e59bf254d2b5eda2b22282546075a89bb6fabe7728b0569cb52c34a63be7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opusfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99925, "scanner": "repobility-docker", "fingerprint": "1d9b301ebc24c54d09ada22c43873f41477f75e9268c159bd652ed650e36a4c8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d9b301ebc24c54d09ada22c43873f41477f75e9268c159bd652ed650e36a4c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99922, "scanner": "repobility-docker", "fingerprint": "998285eec8fc5336bfe377c6328abb1989e490ccf70cd04507c6986579d4c5b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|998285eec8fc5336bfe377c6328abb1989e490ccf70cd04507c6986579d4c5b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99921, "scanner": "repobility-docker", "fingerprint": "b4487e598eedc32dd2368bc4a7539e7786268957f1fd2c9b9331627eb2330200", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4487e598eedc32dd2368bc4a7539e7786268957f1fd2c9b9331627eb2330200"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opt_einsum/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99920, "scanner": "repobility-docker", "fingerprint": "7f5d6298dabc61becf26ecb5b75b3c322082adfb2a42366e1fb25f44f21a7597", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f5d6298dabc61becf26ecb5b75b3c322082adfb2a42366e1fb25f44f21a7597"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opt_einsum/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99919, "scanner": "repobility-docker", "fingerprint": "d48f2fc21a21cea74e6e7940ba52ed1c5313ede0c95e0576a5c6ca8c0a182621", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d48f2fc21a21cea74e6e7940ba52ed1c5313ede0c95e0576a5c6ca8c0a182621"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openyurt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99918, "scanner": "repobility-docker", "fingerprint": "bd462e7a806272d2f2f4a5badc5479df76bd719bfd45ebebac5b742251fc2962", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd462e7a806272d2f2f4a5badc5479df76bd719bfd45ebebac5b742251fc2962"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openyurt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99917, "scanner": "repobility-docker", "fingerprint": "11197fbca438b19d9a8e8128ba4b64a8f574336a8c83ee2e214d09f7ea61dfc8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11197fbca438b19d9a8e8128ba4b64a8f574336a8c83ee2e214d09f7ea61dfc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openweave/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99914, "scanner": "repobility-docker", "fingerprint": "b2b891bcf58306e4e83697a26209c83a6a5e91b03135f96e96f344bb05a63bc8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2b891bcf58306e4e83697a26209c83a6a5e91b03135f96e96f344bb05a63bc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openweave/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99913, "scanner": "repobility-docker", "fingerprint": "aff7848de05c04c3ac4857335e5d1bdec0050a9a3ee616f59c3cfb849f4f77de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aff7848de05c04c3ac4857335e5d1bdec0050a9a3ee616f59c3cfb849f4f77de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvswitch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99910, "scanner": "repobility-docker", "fingerprint": "e1fad4c602d6f92e1eb197b3e8ee22c8a06416f650327a6327bbb8186045eb51", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e1fad4c602d6f92e1eb197b3e8ee22c8a06416f650327a6327bbb8186045eb51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvswitch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99909, "scanner": "repobility-docker", "fingerprint": "4d43861ebaac3c9db7dab4d88513978468df9f57c9710de6531352b8648cd110", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d43861ebaac3c9db7dab4d88513978468df9f57c9710de6531352b8648cd110"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvpn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99906, "scanner": "repobility-docker", "fingerprint": "b3e8568b754f859d0837c87498bb1b2cb1e75b6a333bb4e79d0b43a4101646d3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3e8568b754f859d0837c87498bb1b2cb1e75b6a333bb4e79d0b43a4101646d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvpn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99905, "scanner": "repobility-docker", "fingerprint": "50ec75cc629d9bceaa7c57760b80564ffad0b16f595e57d1a57c8af2c2d352af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|50ec75cc629d9bceaa7c57760b80564ffad0b16f595e57d1a57c8af2c2d352af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openthread/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99902, "scanner": "repobility-docker", "fingerprint": "d0d2fb3eb046d83e5a2c6084fcd6f77e1639161a51f008c64e2874b38e2cd18e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0d2fb3eb046d83e5a2c6084fcd6f77e1639161a51f008c64e2874b38e2cd18e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openthread/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99901, "scanner": "repobility-docker", "fingerprint": "d5a1b41a603ad3c6b5b360e144c3ca1bcb049e8e790c9addc327950e1d835bc9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5a1b41a603ad3c6b5b360e144c3ca1bcb049e8e790c9addc327950e1d835bc9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry-go-contrib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99900, "scanner": "repobility-docker", "fingerprint": "a8a33a6c49997fc4fe4948082d5edcaffcc05de577214843b8411309396cdae5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8a33a6c49997fc4fe4948082d5edcaffcc05de577214843b8411309396cdae5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry-go-contrib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99899, "scanner": "repobility-docker", "fingerprint": "1598ce20ea690a0763bf47dfdc27b6220a78f7b43657ba414e88d3cd52091152", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1598ce20ea690a0763bf47dfdc27b6220a78f7b43657ba414e88d3cd52091152"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99898, "scanner": "repobility-docker", "fingerprint": "b1baa48a94a54096392dec14a3ed3c4ddfca1d8167215811ea15600042a35911", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b1baa48a94a54096392dec14a3ed3c4ddfca1d8167215811ea15600042a35911"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99897, "scanner": "repobility-docker", "fingerprint": "13d5166dfc9c2c13ce94001b25997d273f96f62722e1dd9a0ff516f99e2c0693", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13d5166dfc9c2c13ce94001b25997d273f96f62722e1dd9a0ff516f99e2c0693"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99896, "scanner": "repobility-docker", "fingerprint": "c30c54fb50a7511b651b0056e71ff522f87483391acd276cae68aea1acbf7417", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c30c54fb50a7511b651b0056e71ff522f87483391acd276cae68aea1acbf7417"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opentelemetry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99895, "scanner": "repobility-docker", "fingerprint": "4f10213c5109487efa62cf3cc3790fdbad19a46c9303ba793fe0d7d7e9a7ecd0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f10213c5109487efa62cf3cc3790fdbad19a46c9303ba793fe0d7d7e9a7ecd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99892, "scanner": "repobility-docker", "fingerprint": "b02bd6b2ab89919a578c9a71ba4bcc8c7695ecc8381bfaf7510a46fa07b5746b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b02bd6b2ab89919a578c9a71ba4bcc8c7695ecc8381bfaf7510a46fa07b5746b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99891, "scanner": "repobility-docker", "fingerprint": "fba5e376191dd3b9b9f216e380e7d5ee68731c86d0e2a481799e1d6f09408071", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fba5e376191dd3b9b9f216e380e7d5ee68731c86d0e2a481799e1d6f09408071"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99887, "scanner": "repobility-docker", "fingerprint": "e8f5ec8a4b774d2c8b80c8e80d51cec94c70a397e45281c3cabb07f0e1bdb46d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8f5ec8a4b774d2c8b80c8e80d51cec94c70a397e45281c3cabb07f0e1bdb46d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99886, "scanner": "repobility-docker", "fingerprint": "91765a39c6535865f9efb25565ee94551b14d658acfb2c2dde1dc388a0b98bf5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91765a39c6535865f9efb25565ee94551b14d658acfb2c2dde1dc388a0b98bf5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensk/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99883, "scanner": "repobility-docker", "fingerprint": "4a922d12a0592b34e30ce39e9053be3cd78bb218ff5969764eb702a57ca01771", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a922d12a0592b34e30ce39e9053be3cd78bb218ff5969764eb702a57ca01771"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensk/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99882, "scanner": "repobility-docker", "fingerprint": "568d3e24ca235ecc006f654c42cc813aa9a005a9cf4029743a51f83a1776cfec", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|568d3e24ca235ecc006f654c42cc813aa9a005a9cf4029743a51f83a1776cfec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensips/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99879, "scanner": "repobility-docker", "fingerprint": "b19dc52a77206a42b4ff8afbd7a02523a13cf6458ddac0331796658d8c6ba981", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b19dc52a77206a42b4ff8afbd7a02523a13cf6458ddac0331796658d8c6ba981"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensips/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99878, "scanner": "repobility-docker", "fingerprint": "3c193fdb66439fd6449513fddbba2b99735f1778b30827cc577c9f662df46d0a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c193fdb66439fd6449513fddbba2b99735f1778b30827cc577c9f662df46d0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99875, "scanner": "repobility-docker", "fingerprint": "4076befcf161fd3bb0a9322542a4f11e4e8a401be9df98b4142551970918a0e1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4076befcf161fd3bb0a9322542a4f11e4e8a401be9df98b4142551970918a0e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99874, "scanner": "repobility-docker", "fingerprint": "88c76632a699cb2fe4c603e389649344b4ac27622285d08da9b469a3ae8d36ad", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|88c76632a699cb2fe4c603e389649344b4ac27622285d08da9b469a3ae8d36ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openpyxl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99872, "scanner": "repobility-docker", "fingerprint": "d2a63b1937f0d02a13fcf9bb7c876828a46cdb9ec3dc10bf5db3e92a31141251", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2a63b1937f0d02a13fcf9bb7c876828a46cdb9ec3dc10bf5db3e92a31141251"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openpyxl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99871, "scanner": "repobility-docker", "fingerprint": "b0769e5a9441923ab81b223f444b944c55de703b9a722217253115f4ae6b5bbd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0769e5a9441923ab81b223f444b944c55de703b9a722217253115f4ae6b5bbd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opennavsurf-bag/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99867, "scanner": "repobility-docker", "fingerprint": "3198ced242c299672815dd942108f9392959721c5b165531f2a1227138c8d811", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3198ced242c299672815dd942108f9392959721c5b165531f2a1227138c8d811"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opennavsurf-bag/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99866, "scanner": "repobility-docker", "fingerprint": "c31cc8ed03a97f5c5a7cd6586b246aceb1f1193bba618f5c1ed5f110df1f975b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c31cc8ed03a97f5c5a7cd6586b246aceb1f1193bba618f5c1ed5f110df1f975b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openkruise/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99865, "scanner": "repobility-docker", "fingerprint": "cd00185825115a1ebc124c1d7cc79bf8e7ae18764380f6d42a1400839e390ce6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd00185825115a1ebc124c1d7cc79bf8e7ae18764380f6d42a1400839e390ce6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openkruise/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99864, "scanner": "repobility-docker", "fingerprint": "7f2b84c206636acd026f11d836fe1257535b82382833b093b9e705028b874f59", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f2b84c206636acd026f11d836fe1257535b82382833b093b9e705028b874f59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjph/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99861, "scanner": "repobility-docker", "fingerprint": "f20fdd0c4311fb40236db7bf113b4dc10af49fb8b86779a067630a75c169d6dc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f20fdd0c4311fb40236db7bf113b4dc10af49fb8b86779a067630a75c169d6dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjph/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99860, "scanner": "repobility-docker", "fingerprint": "819a3bd5c8e7f18c93fd1336b5eadb6c8f4fa7414600850d47991f65476044c9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|819a3bd5c8e7f18c93fd1336b5eadb6c8f4fa7414600850d47991f65476044c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjpeg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99857, "scanner": "repobility-docker", "fingerprint": "85b96d5c9d65a579af93a3cf8d6fc80622de1c39e8335b131156d7ed65dd1ead", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|85b96d5c9d65a579af93a3cf8d6fc80622de1c39e8335b131156d7ed65dd1ead"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjpeg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99856, "scanner": "repobility-docker", "fingerprint": "a3a8515b88c8cff14dc56454dcb0049aafdbb16593cbd551a9e4a9ea8421d91a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a3a8515b88c8cff14dc56454dcb0049aafdbb16593cbd551a9e4a9ea8421d91a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openh264/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99852, "scanner": "repobility-docker", "fingerprint": "7112760176b1771618009039f738b6d6a8840dbb87030cb5515eaa64e090fb2e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7112760176b1771618009039f738b6d6a8840dbb87030cb5515eaa64e090fb2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openh264/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99851, "scanner": "repobility-docker", "fingerprint": "9dc8bb542a9adb036eecaea0ed68b1f4f0d2528815bfd44d5a4a2b88b69d3f4e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9dc8bb542a9adb036eecaea0ed68b1f4f0d2528815bfd44d5a4a2b88b69d3f4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openfga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99850, "scanner": "repobility-docker", "fingerprint": "aaa708093f59204d357055682b53ce7435e03324bf5f568e4657399d7cf5a022", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aaa708093f59204d357055682b53ce7435e03324bf5f568e4657399d7cf5a022"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openfga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99849, "scanner": "repobility-docker", "fingerprint": "728326bd0940e77b64eed4d96cc5d7b16b534bf0dccc3dbc2c4c4c86ba91b1a5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|728326bd0940e77b64eed4d96cc5d7b16b534bf0dccc3dbc2c4c4c86ba91b1a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openexr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99846, "scanner": "repobility-docker", "fingerprint": "d7433fdc8db58ccafe5ca892483485afab322e15446f3beeb5d9a78a071d67bf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7433fdc8db58ccafe5ca892483485afab322e15446f3beeb5d9a78a071d67bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openexr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99845, "scanner": "repobility-docker", "fingerprint": "1235134b6c79d70226ddb66ae349b035443758d81bb7b1ec91052aa402f83f70", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1235134b6c79d70226ddb66ae349b035443758d81bb7b1ec91052aa402f83f70"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendnp3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99842, "scanner": "repobility-docker", "fingerprint": "09f3622a6ee0ea44dfc353ae2f55edea9f75e12f82aa3d3a8bf4384892772979", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09f3622a6ee0ea44dfc353ae2f55edea9f75e12f82aa3d3a8bf4384892772979"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendnp3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99841, "scanner": "repobility-docker", "fingerprint": "88f362f0647a44316984049dcbb829acccfd271f646aa1c6bdeb57b388816dc6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|88f362f0647a44316984049dcbb829acccfd271f646aa1c6bdeb57b388816dc6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendal/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99840, "scanner": "repobility-docker", "fingerprint": "6295b4a133192ac8bc9c3a7aec2152345c9508d61c74135e01cfd33a43617da2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6295b4a133192ac8bc9c3a7aec2152345c9508d61c74135e01cfd33a43617da2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendal/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99839, "scanner": "repobility-docker", "fingerprint": "1648dbef7c04707140b09e5db51e5b168f2fbf763e2fcb106a0fdcab215d6469", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1648dbef7c04707140b09e5db51e5b168f2fbf763e2fcb106a0fdcab215d6469"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99836, "scanner": "repobility-docker", "fingerprint": "f3733004393b08c9748d0ad8ad971123f0b8fb04460f919bbbbff6b7dc8c6041", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3733004393b08c9748d0ad8ad971123f0b8fb04460f919bbbbff6b7dc8c6041"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99835, "scanner": "repobility-docker", "fingerprint": "99b18e15cb9a9b8c409e25302f79ae75a8989c1cdf86800b468b3a7f857bb1dd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99b18e15cb9a9b8c409e25302f79ae75a8989c1cdf86800b468b3a7f857bb1dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencsv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99834, "scanner": "repobility-docker", "fingerprint": "602fa9304d79cbf9e5ec5f9aaf635993c639d8922cc0d7ebae9e526d44704fb5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|602fa9304d79cbf9e5ec5f9aaf635993c639d8922cc0d7ebae9e526d44704fb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencsv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99833, "scanner": "repobility-docker", "fingerprint": "a823bd7703de04b191e0edfb2bae1bca256c8591cfdee8dbf23f287c72ccce2a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a823bd7703de04b191e0edfb2bae1bca256c8591cfdee8dbf23f287c72ccce2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-python/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99832, "scanner": "repobility-docker", "fingerprint": "bb02ed1c022c10b1d53efaa1d46419c12e41aa4bc9ef29a2e51e15d99c772f8e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bb02ed1c022c10b1d53efaa1d46419c12e41aa4bc9ef29a2e51e15d99c772f8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99829, "scanner": "repobility-docker", "fingerprint": "74896c9acd1fcc4b39a2c52229b605ebbdeca3f74d6bb2a1d152e26a22ba8190", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|74896c9acd1fcc4b39a2c52229b605ebbdeca3f74d6bb2a1d152e26a22ba8190"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99828, "scanner": "repobility-docker", "fingerprint": "37321dc45b9b9d18862f4d8e7210731557ac02610020be6282bb4791c82990e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37321dc45b9b9d18862f4d8e7210731557ac02610020be6282bb4791c82990e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99827, "scanner": "repobility-docker", "fingerprint": "dfa03bcb610800bea199ed5ad013922f9d1af6536a39be54feadc5f64a5d0cb6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dfa03bcb610800bea199ed5ad013922f9d1af6536a39be54feadc5f64a5d0cb6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99826, "scanner": "repobility-docker", "fingerprint": "96ef34ff51189b99bbea9691d4b8889c1069192f4d1ff0beede604644aec4a24", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96ef34ff51189b99bbea9691d4b8889c1069192f4d1ff0beede604644aec4a24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99825, "scanner": "repobility-docker", "fingerprint": "899177d4f525a3d2ed0e02dbb6711d930262b23b43437e2d01a7470e2e7408c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|899177d4f525a3d2ed0e02dbb6711d930262b23b43437e2d01a7470e2e7408c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99824, "scanner": "repobility-docker", "fingerprint": "33a33a013634def634ed9a858c047d1e4a644b495c72d007347529d726f0f737", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33a33a013634def634ed9a858c047d1e4a644b495c72d007347529d726f0f737"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openbabel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99821, "scanner": "repobility-docker", "fingerprint": "e2e1cfe09940192d51d38b0026c44f29a4ea96181dd78ee11030c2d8ce26eded", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e2e1cfe09940192d51d38b0026c44f29a4ea96181dd78ee11030c2d8ce26eded"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openbabel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99820, "scanner": "repobility-docker", "fingerprint": "e117db215d751f6bb5b89c92051c41b5d883e2054151a916780c386d8c2de8d5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e117db215d751f6bb5b89c92051c41b5d883e2054151a916780c386d8c2de8d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openapi-schema-validator/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99819, "scanner": "repobility-docker", "fingerprint": "0a9b4ecd00ab6c400da81d006247b24346fe3f4bb6ff7810c75a4458273224bb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a9b4ecd00ab6c400da81d006247b24346fe3f4bb6ff7810c75a4458273224bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openapi-schema-validator/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99818, "scanner": "repobility-docker", "fingerprint": "e6665891959ba9d4fdff1355a280808eb44ba8239613d443c440e1a59a0ee0d2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e6665891959ba9d4fdff1355a280808eb44ba8239613d443c440e1a59a0ee0d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open62541/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99815, "scanner": "repobility-docker", "fingerprint": "2ab556f074c9c94f9df86f74a0ab46ffa2f0d87193c2f03712975a8af7712088", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ab556f074c9c94f9df86f74a0ab46ffa2f0d87193c2f03712975a8af7712088"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open5gs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99813, "scanner": "repobility-docker", "fingerprint": "0af649dd6c744dfe9c80771e7f039c59f9b0dcf91b1edf0138653c61469e1ae1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0af649dd6c744dfe9c80771e7f039c59f9b0dcf91b1edf0138653c61469e1ae1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open5gs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99812, "scanner": "repobility-docker", "fingerprint": "6ded08133d34803caa2798a2df5bfc7179c41e1ceb2b725458f95f8d8bd13b61", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ded08133d34803caa2798a2df5bfc7179c41e1ceb2b725458f95f8d8bd13b61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open-json/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99811, "scanner": "repobility-docker", "fingerprint": "ca5b998ec0a8eaedac3800960e1a01dcb9e42721ce74ed9f8bb077d65dec25fa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca5b998ec0a8eaedac3800960e1a01dcb9e42721ce74ed9f8bb077d65dec25fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open-json/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99810, "scanner": "repobility-docker", "fingerprint": "8162a710cb718a12b80c1a165d0c9082c754b200110beff7dacd455db03ada0b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8162a710cb718a12b80c1a165d0c9082c754b200110beff7dacd455db03ada0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/onednn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99807, "scanner": "repobility-docker", "fingerprint": "16328b42a0c2b67a48dc7a57574e835f1139d6bb2653fa51032faa83515139d2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16328b42a0c2b67a48dc7a57574e835f1139d6bb2653fa51032faa83515139d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/onednn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99806, "scanner": "repobility-docker", "fingerprint": "1df6138fb1170c5b4f59e171f588e70fb2c8ff3e8798f0c5524957bc93bd4c25", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1df6138fb1170c5b4f59e171f588e70fb2c8ff3e8798f0c5524957bc93bd4c25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/olefile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99803, "scanner": "repobility-docker", "fingerprint": "8a73f6cd2f5ef8e9b96d650f11c3fc9969c12908cce6e92167d7d9b9d1422560", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a73f6cd2f5ef8e9b96d650f11c3fc9969c12908cce6e92167d7d9b9d1422560"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/olefile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99802, "scanner": "repobility-docker", "fingerprint": "1d26b545354762a87bef5264096c334644fa41bedf4ff32fa766e6d14ac874d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d26b545354762a87bef5264096c334644fa41bedf4ff32fa766e6d14ac874d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/okhttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99801, "scanner": "repobility-docker", "fingerprint": "47b7f646ad1fe84d6fd33523675050727f77fa8132365fd510c662c444e15e69", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47b7f646ad1fe84d6fd33523675050727f77fa8132365fd510c662c444e15e69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/okhttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99800, "scanner": "repobility-docker", "fingerprint": "f53d9f61d374d133cd337a50d25690e15350f320e86b015f9657d7ae7fe3e7e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f53d9f61d374d133cd337a50d25690e15350f320e86b015f9657d7ae7fe3e7e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ohc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99799, "scanner": "repobility-docker", "fingerprint": "14232fffb98b0ba70ee67cf547b8a247cb60fbe913a665d7b791f8c10c2f450f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|14232fffb98b0ba70ee67cf547b8a247cb60fbe913a665d7b791f8c10c2f450f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ohc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99798, "scanner": "repobility-docker", "fingerprint": "8ec9ff88dad741d1d18c93ab690574ad37aba85969b382262c688efb2152fa93", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ec9ff88dad741d1d18c93ab690574ad37aba85969b382262c688efb2152fa93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ogre/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99795, "scanner": "repobility-docker", "fingerprint": "7c6126a8ef3cd8e181b3bd5e200ab4249291d59cf28d7a3343134f4fe747136b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c6126a8ef3cd8e181b3bd5e200ab4249291d59cf28d7a3343134f4fe747136b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ogre/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99794, "scanner": "repobility-docker", "fingerprint": "273d0d9355229f04f952428917da777d0f6d1c29d5ccb59bc97689dc2c59ed74", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|273d0d9355229f04f952428917da777d0f6d1c29d5ccb59bc97689dc2c59ed74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauthlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99791, "scanner": "repobility-docker", "fingerprint": "f7796cb49e2b33a56f90f933250d0985d15e77934e10a5dbae698ad807985070", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f7796cb49e2b33a56f90f933250d0985d15e77934e10a5dbae698ad807985070"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauthlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99790, "scanner": "repobility-docker", "fingerprint": "58b929481cabd3b467ae473596cee32496d0e5970db3a672f146fd58f107aebb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58b929481cabd3b467ae473596cee32496d0e5970db3a672f146fd58f107aebb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauth2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99789, "scanner": "repobility-docker", "fingerprint": "2974f5b427091dec8c67d41ae1014a57f30aa8967af9f7a191d31f5651f02d2d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2974f5b427091dec8c67d41ae1014a57f30aa8967af9f7a191d31f5651f02d2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauth2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99788, "scanner": "repobility-docker", "fingerprint": "8cea284a5a91a23a153a52533790f8c2cb6d73e6ebd3af635a5cd3a1d7f9f068", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cea284a5a91a23a153a52533790f8c2cb6d73e6ebd3af635a5cd3a1d7f9f068"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oatpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99785, "scanner": "repobility-docker", "fingerprint": "c92b4099166801970755750fe75335f8020841df5b0040a7c1b634ef33d26d1f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c92b4099166801970755750fe75335f8020841df5b0040a7c1b634ef33d26d1f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oatpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99784, "scanner": "repobility-docker", "fingerprint": "ccec65b97cd514875e7851c4ffa1f8650849346658051187ff095a783d06ea48", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ccec65b97cd514875e7851c4ffa1f8650849346658051187ff095a783d06ea48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oak/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99783, "scanner": "repobility-docker", "fingerprint": "b5d857a8e5580ea65b71cbfe5cbdd09bdcb1d3006d69f7ef68044165d93e09cf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b5d857a8e5580ea65b71cbfe5cbdd09bdcb1d3006d69f7ef68044165d93e09cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oak/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99782, "scanner": "repobility-docker", "fingerprint": "fdc843afb2ddf5170df7c2e529d17abd655eb209a69b0a706328ae9f3b916dbb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fdc843afb2ddf5170df7c2e529d17abd655eb209a69b0a706328ae9f3b916dbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numpy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99778, "scanner": "repobility-docker", "fingerprint": "2a4e9fc31a0f36a67c53e3bdaafff9f812298f5f4cfc1647418fcf755cdcce0a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a4e9fc31a0f36a67c53e3bdaafff9f812298f5f4cfc1647418fcf755cdcce0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numpy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99777, "scanner": "repobility-docker", "fingerprint": "d34076435bf4058a1c5c9f43d1ea50ec52ebfc405580d6c6a9011013601398d4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d34076435bf4058a1c5c9f43d1ea50ec52ebfc405580d6c6a9011013601398d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numexpr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99776, "scanner": "repobility-docker", "fingerprint": "3d64b0f4acbfe780306c07e64ef2fd5fb24a0918182f91ff54dad15df37a75bd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3d64b0f4acbfe780306c07e64ef2fd5fb24a0918182f91ff54dad15df37a75bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numexpr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99775, "scanner": "repobility-docker", "fingerprint": "9ad9c1975b50bd3b8936cc9bfb675222bcedf364dac2090cccb58ae18dffa92c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ad9c1975b50bd3b8936cc9bfb675222bcedf364dac2090cccb58ae18dffa92c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numactl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99772, "scanner": "repobility-docker", "fingerprint": "ad91b9083ff7f1b434a325488eccc023f95a24fc7227fa169e5e1ea0335a3b43", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad91b9083ff7f1b434a325488eccc023f95a24fc7227fa169e5e1ea0335a3b43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numactl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99771, "scanner": "repobility-docker", "fingerprint": "5e5d17f0b75d07e81a31d24b8e5f793d75a8cba5f9c0298765ab007abdc4ea00", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e5d17f0b75d07e81a31d24b8e5f793d75a8cba5f9c0298765ab007abdc4ea00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/num-bigint/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99768, "scanner": "repobility-docker", "fingerprint": "8ce99ffb49a33efe4227f3f67f4043fb7d080af6c73ea1594456400cd2315504", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ce99ffb49a33efe4227f3f67f4043fb7d080af6c73ea1594456400cd2315504"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/num-bigint/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99767, "scanner": "repobility-docker", "fingerprint": "5dbc9897fbe7a941eae5fcb02f55bf4bbc255237be2a31be11e366d37dfafe6b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5dbc9897fbe7a941eae5fcb02f55bf4bbc255237be2a31be11e366d37dfafe6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntpsec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99764, "scanner": "repobility-docker", "fingerprint": "c7b793ac82c0947fba21e8b6916073d3fa2bf30f539123d465cd4bdd681b2e05", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7b793ac82c0947fba21e8b6916073d3fa2bf30f539123d465cd4bdd681b2e05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99761, "scanner": "repobility-docker", "fingerprint": "e282f602997b38c51f84ec48b2f607cf14c8f53185bc1141f3b0be5b31a28aee", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e282f602997b38c51f84ec48b2f607cf14c8f53185bc1141f3b0be5b31a28aee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99760, "scanner": "repobility-docker", "fingerprint": "01b566148ba1acc285aad47427938c0d681a0ae7da01555cd6693f4883342172", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|01b566148ba1acc285aad47427938c0d681a0ae7da01555cd6693f4883342172"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99759, "scanner": "repobility-docker", "fingerprint": "825fd006cd71f4ea4862db182e03e5a7a5fc3d453bc0dda3c94a8826b3166667", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|825fd006cd71f4ea4862db182e03e5a7a5fc3d453bc0dda3c94a8826b3166667"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 43}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99758, "scanner": "repobility-docker", "fingerprint": "94510d3fd27f7efd41d1ad746e3f468d3653ef721d17f00cbbe2bd330da8678b", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|94510d3fd27f7efd41d1ad746e3f468d3653ef721d17f00cbbe2bd330da8678b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 41}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99757, "scanner": "repobility-docker", "fingerprint": "09f9f6a51319cb1dc5bd11fb92dfe0ece632c5f94e888e08a1c30bc90fc15827", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09f9f6a51319cb1dc5bd11fb92dfe0ece632c5f94e888e08a1c30bc90fc15827"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 39}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99756, "scanner": "repobility-docker", "fingerprint": "2813616d6a5c8780d47ffe6b0db55c347ed71abe888888c8a789bd7107a08340", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2813616d6a5c8780d47ffe6b0db55c347ed71abe888888c8a789bd7107a08340"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 37}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99753, "scanner": "repobility-docker", "fingerprint": "52b7d31aede2a3bd91d69d2870f49e33e5a5d8861fa6baf735258662a1cce34d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52b7d31aede2a3bd91d69d2870f49e33e5a5d8861fa6baf735258662a1cce34d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99752, "scanner": "repobility-docker", "fingerprint": "6434d853eeecb61eb30422b3d4d67403df13da780452ac3791f08bd814b8ce59", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6434d853eeecb61eb30422b3d4d67403df13da780452ac3791f08bd814b8ce59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntlm2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99751, "scanner": "repobility-docker", "fingerprint": "776fc675804c06d3514e8288aa7154e38cc61af464319bb5ec765c991cc9eedb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|776fc675804c06d3514e8288aa7154e38cc61af464319bb5ec765c991cc9eedb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntlm2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99750, "scanner": "repobility-docker", "fingerprint": "71a65f6e27798e0278260060a38f5dc1916e5cb4fd99cf85901474d72bbe6078", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71a65f6e27798e0278260060a38f5dc1916e5cb4fd99cf85901474d72bbe6078"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntlm-auth/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99749, "scanner": "repobility-docker", "fingerprint": "a83f2b1a83af9be2da19928506ddec85e82e1db93c7e8de43651e1f408677016", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a83f2b1a83af9be2da19928506ddec85e82e1db93c7e8de43651e1f408677016"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntlm-auth/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99748, "scanner": "repobility-docker", "fingerprint": "52870c912ed69bf6029db0c4a466958e84f0b8314dfc1e1f43754603fcef7d9b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52870c912ed69bf6029db0c4a466958e84f0b8314dfc1e1f43754603fcef7d9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nss/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99745, "scanner": "repobility-docker", "fingerprint": "5b32431abcddb742d1763782422ab10e8ad532a27dd22241c2539a58c581d04d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5b32431abcddb742d1763782422ab10e8ad532a27dd22241c2539a58c581d04d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nss/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99744, "scanner": "repobility-docker", "fingerprint": "5f5a4bd57f2a0b564fba1dea1ee1562a242237231891353383afed913f1800e5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f5a4bd57f2a0b564fba1dea1ee1562a242237231891353383afed913f1800e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/notary/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99743, "scanner": "repobility-docker", "fingerprint": "406f9aebfd6e4f3eabf8ab95720f5ead1f6cd4951474a53b4d7a461ef2e6630a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|406f9aebfd6e4f3eabf8ab95720f5ead1f6cd4951474a53b4d7a461ef2e6630a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/notary/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99742, "scanner": "repobility-docker", "fingerprint": "11a983428c25dee73a35310216b2714d0e0df4af8826d9a04930282d3ac7174a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11a983428c25dee73a35310216b2714d0e0df4af8826d9a04930282d3ac7174a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nom/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99741, "scanner": "repobility-docker", "fingerprint": "51680e5226617485e472d0d48c19b09a3566e305f0dc4a55d7578c022285d629", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51680e5226617485e472d0d48c19b09a3566e305f0dc4a55d7578c022285d629"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nom/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99740, "scanner": "repobility-docker", "fingerprint": "b7d11456ae52cff109ec845aeca79dbbe8b2b9449bbbd72dcbf81944d38973ef", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7d11456ae52cff109ec845aeca79dbbe8b2b9449bbbd72dcbf81944d38973ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nokogiri/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99739, "scanner": "repobility-docker", "fingerprint": "db16cc8b4ac73ae65a3f3cb7a6dfc60243b3a648ad2d5c2b8b69bab586e38fca", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db16cc8b4ac73ae65a3f3cb7a6dfc60243b3a648ad2d5c2b8b69bab586e38fca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nokogiri/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99738, "scanner": "repobility-docker", "fingerprint": "6ff8e5ee0306762e96b61b62373739f504539f2cdc4548a40449e1a552f56255", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ff8e5ee0306762e96b61b62373739f504539f2cdc4548a40449e1a552f56255"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nokogiri/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99737, "scanner": "repobility-docker", "fingerprint": "22a2c5ffe954668e5ae774cb1dd12ccee87b0f2b395d5cdd72c6574497e683d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22a2c5ffe954668e5ae774cb1dd12ccee87b0f2b395d5cdd72c6574497e683d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nodejs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99734, "scanner": "repobility-docker", "fingerprint": "0c4cb586990a82fc6a6d09091246d540d10d272c5ce3411ebdf817138c0875c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c4cb586990a82fc6a6d09091246d540d10d272c5ce3411ebdf817138c0875c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nodejs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99733, "scanner": "repobility-docker", "fingerprint": "fc4132f5a305109c825d619d7c7fc84f27bbde4cd4da5b08ad3388564929eb5e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc4132f5a305109c825d619d7c7fc84f27bbde4cd4da5b08ad3388564929eb5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/node-xml2js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99732, "scanner": "repobility-docker", "fingerprint": "a6dc585a3ef3b0c1a44dcbf7bfc11241c3bdc112df65554aee9eab422ed7718b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6dc585a3ef3b0c1a44dcbf7bfc11241c3bdc112df65554aee9eab422ed7718b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/node-xml2js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99731, "scanner": "repobility-docker", "fingerprint": "621ede602b2015decc160e885d4b91681f16802e8a5d606d5ae9fd30d551bdbb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|621ede602b2015decc160e885d4b91681f16802e8a5d606d5ae9fd30d551bdbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/njs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99728, "scanner": "repobility-docker", "fingerprint": "ed217c925e2b0c311a765252276fb70d2544b960376652a4b1ac5f1cf1e6784c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed217c925e2b0c311a765252276fb70d2544b960376652a4b1ac5f1cf1e6784c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/njs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99727, "scanner": "repobility-docker", "fingerprint": "c9a8d7a236236b504520e55a4ae3e9f486f08d1752e5978eda7046ee4d44d778", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9a8d7a236236b504520e55a4ae3e9f486f08d1752e5978eda7046ee4d44d778"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ninja/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99724, "scanner": "repobility-docker", "fingerprint": "655cd60b106ec44f2eb89b2afbe161495d747cfa288c7b51c8be9e4e6fa026f7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|655cd60b106ec44f2eb89b2afbe161495d747cfa288c7b51c8be9e4e6fa026f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ninja/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99723, "scanner": "repobility-docker", "fingerprint": "8deb2450d122d655f750131625cec4d8836219c0050d5f84dd0109b8f88c19af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8deb2450d122d655f750131625cec4d8836219c0050d5f84dd0109b8f88c19af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nimbus-jwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99721, "scanner": "repobility-docker", "fingerprint": "bd4a0bad8c5e258265dbdd023a3cde0e4da7a640cf8974954874abaee7e49a27", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd4a0bad8c5e258265dbdd023a3cde0e4da7a640cf8974954874abaee7e49a27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing-x/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99718, "scanner": "repobility-docker", "fingerprint": "26764708f09f5efaf23e8c00edb22f79a352bf448b9573a2f91e92d2c7217a9b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26764708f09f5efaf23e8c00edb22f79a352bf448b9573a2f91e92d2c7217a9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing-x/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99717, "scanner": "repobility-docker", "fingerprint": "6748996720ee876339051ba16f23655c8c7f99f0296c9aeb037f8b3f50f57790", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6748996720ee876339051ba16f23655c8c7f99f0296c9aeb037f8b3f50f57790"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99714, "scanner": "repobility-docker", "fingerprint": "9b070554f7f38505890bf9368c262843f49aeec39463dd24ed3f93be429f7bf0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b070554f7f38505890bf9368c262843f49aeec39463dd24ed3f93be429f7bf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nginx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99711, "scanner": "repobility-docker", "fingerprint": "232a8653ae13320478ea64b653882d7a635558b849b511b1cc22c2446a16d2b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|232a8653ae13320478ea64b653882d7a635558b849b511b1cc22c2446a16d2b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nginx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99710, "scanner": "repobility-docker", "fingerprint": "5ee7f8b4a922920ce98c824cd5db68ad3fe2afab73fa9de0fa2858503be47f0f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ee7f8b4a922920ce98c824cd5db68ad3fe2afab73fa9de0fa2858503be47f0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nghttp2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99707, "scanner": "repobility-docker", "fingerprint": "d51c6eb395767de4bfffa2845c64beda738c1dd5b5946d1e8e8bb8a0ccd352ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d51c6eb395767de4bfffa2845c64beda738c1dd5b5946d1e8e8bb8a0ccd352ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nghttp2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99706, "scanner": "repobility-docker", "fingerprint": "8f00b61f80b07194694211f6f79fb301b5d89cf9c4919bb97fe5a4f50fe2d9f9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f00b61f80b07194694211f6f79fb301b5d89cf9c4919bb97fe5a4f50fe2d9f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99702, "scanner": "repobility-docker", "fingerprint": "df4073b06c79c177a1c6f322e465024c8b4ce46df6506e872532c5a03134920f", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df4073b06c79c177a1c6f322e465024c8b4ce46df6506e872532c5a03134920f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99701, "scanner": "repobility-docker", "fingerprint": "876407d4cfbcaae0427cea5a7ba8e8169a87db3d9ba31888dce93792f03cacdf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|876407d4cfbcaae0427cea5a7ba8e8169a87db3d9ba31888dce93792f03cacdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99700, "scanner": "repobility-docker", "fingerprint": "24989453bf35170f15aa07684f4cfe781c9936e09374a56aa3076db4ad8c6e8d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|24989453bf35170f15aa07684f4cfe781c9936e09374a56aa3076db4ad8c6e8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/networkx/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99696, "scanner": "repobility-docker", "fingerprint": "26ac83dfaaa0221897620c5ca904bd029007d26ab2cd5de7e3e9792ad15deecf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26ac83dfaaa0221897620c5ca904bd029007d26ab2cd5de7e3e9792ad15deecf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/networkx/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99695, "scanner": "repobility-docker", "fingerprint": "fedc9ed8affbc8162cd50f3d2f9a947c97e1ec8604089e6a4d24e4d1f43a634a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fedc9ed8affbc8162cd50f3d2f9a947c97e1ec8604089e6a4d24e4d1f43a634a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netty-tcnative/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99693, "scanner": "repobility-docker", "fingerprint": "9d5e45b07a9f759593e0314e5a0e04b3662adfc7630338f4ac3175bab63729f7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d5e45b07a9f759593e0314e5a0e04b3662adfc7630338f4ac3175bab63729f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netty/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99691, "scanner": "repobility-docker", "fingerprint": "33bebf2f0cc33f6bb8837e66b1b02be7a65a6a5455951b880cdb220dcb139992", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33bebf2f0cc33f6bb8837e66b1b02be7a65a6a5455951b880cdb220dcb139992"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netty/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99690, "scanner": "repobility-docker", "fingerprint": "5cbce82828defafc5da029aa1f04ab6ab079db2dfff5b2814a14f572d2679548", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5cbce82828defafc5da029aa1f04ab6ab079db2dfff5b2814a14f572d2679548"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nettle/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99687, "scanner": "repobility-docker", "fingerprint": "6817bc16cb35e02166d13618c3a40361e1a8a35ff2a935ef5a55fab2d99ecb15", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6817bc16cb35e02166d13618c3a40361e1a8a35ff2a935ef5a55fab2d99ecb15"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netcdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99684, "scanner": "repobility-docker", "fingerprint": "54d302699559add7007b89ccf2b9423675b73d2c5fb35d7ac6c42e1b66212ddd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54d302699559add7007b89ccf2b9423675b73d2c5fb35d7ac6c42e1b66212ddd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netcdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99683, "scanner": "repobility-docker", "fingerprint": "e52c6b71717250df3d52b2b1da1548a33c46f951b5212acaa2f9fce4818a563a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e52c6b71717250df3d52b2b1da1548a33c46f951b5212acaa2f9fce4818a563a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netaddr-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99682, "scanner": "repobility-docker", "fingerprint": "032b5bbaa240d7b89bd890a1e8c35c520b7ae00ab13c95250bb7659bbab9b760", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|032b5bbaa240d7b89bd890a1e8c35c520b7ae00ab13c95250bb7659bbab9b760"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netaddr-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99681, "scanner": "repobility-docker", "fingerprint": "0c93f08b6fccf43083fdddd812c76a4fa03e89159cbb18043cc6ac2aab0f8a63", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c93f08b6fccf43083fdddd812c76a4fa03e89159cbb18043cc6ac2aab0f8a63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/net-snmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99680, "scanner": "repobility-docker", "fingerprint": "04b19675dafd1826380ed8e06d735876cfd090c2465cd0bf90b89a600ed6faa0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04b19675dafd1826380ed8e06d735876cfd090c2465cd0bf90b89a600ed6faa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/net-snmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99679, "scanner": "repobility-docker", "fingerprint": "0fee931dc4d23b4a39640f86213215c349f3e6d81d49f4ce6290e413b6f729a2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0fee931dc4d23b4a39640f86213215c349f3e6d81d49f4ce6290e413b6f729a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nestegg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99676, "scanner": "repobility-docker", "fingerprint": "d0fede8bfa58b0ed437e562603895e5fc041474ad1c34383336b1300b2293c81", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0fede8bfa58b0ed437e562603895e5fc041474ad1c34383336b1300b2293c81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nestegg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99675, "scanner": "repobility-docker", "fingerprint": "1edd2bd20f48a76f1eecfcd0eac332835016e6fd461569b5b20095ced346ba4f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1edd2bd20f48a76f1eecfcd0eac332835016e6fd461569b5b20095ced346ba4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/neqo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99674, "scanner": "repobility-docker", "fingerprint": "faecf58da2879fd960f8b01a046ce8c3b19154156b5e42da684eadf18aeeaca2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|faecf58da2879fd960f8b01a046ce8c3b19154156b5e42da684eadf18aeeaca2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/neqo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99673, "scanner": "repobility-docker", "fingerprint": "77b1b363a433a0094f74f1c829638515b6e84f61b908cfb6ae24baff063a9a16", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77b1b363a433a0094f74f1c829638515b6e84f61b908cfb6ae24baff063a9a16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/neomutt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99670, "scanner": "repobility-docker", "fingerprint": "9064331a8077be644db9fd06fb6a2419b7dc616cac34f18bf914671e53382848", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9064331a8077be644db9fd06fb6a2419b7dc616cac34f18bf914671e53382848"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ndpi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99669, "scanner": "repobility-docker", "fingerprint": "9c734ccd7a15e452a00f51677b0096b81d17f4c3c71e3b4e6c8a26adb32a5918", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c734ccd7a15e452a00f51677b0096b81d17f4c3c71e3b4e6c8a26adb32a5918"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ndpi/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99668, "scanner": "repobility-docker", "fingerprint": "57c3d4efbe3e608b40d48c673b86d565f156b0b9183206f78bc1c9f19c2682d6", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57c3d4efbe3e608b40d48c673b86d565f156b0b9183206f78bc1c9f19c2682d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ndpi/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99665, "scanner": "repobility-docker", "fingerprint": "bbf9e6cb9aa55c76e36d44fc6b38906d30ba67f854da9f1693acd0c90983df60", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bbf9e6cb9aa55c76e36d44fc6b38906d30ba67f854da9f1693acd0c90983df60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nccl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99664, "scanner": "repobility-docker", "fingerprint": "7b4b80198299f4b02bcf1d5b09c5d6af510f35165df418173d7d65cb00a5f360", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b4b80198299f4b02bcf1d5b09c5d6af510f35165df418173d7d65cb00a5f360"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nccl/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99661, "scanner": "repobility-docker", "fingerprint": "bd77c63e3b56bac99b495702c598bb989febf88f547fd6a8883c359b49372c6f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd77c63e3b56bac99b495702c598bb989febf88f547fd6a8883c359b49372c6f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nccl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99660, "scanner": "repobility-docker", "fingerprint": "cb9c8e6de4b2c747e7dc53cb08973edb0ed471827f4cb6aac26bb952a936f0a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb9c8e6de4b2c747e7dc53cb08973edb0ed471827f4cb6aac26bb952a936f0a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbformat/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99659, "scanner": "repobility-docker", "fingerprint": "be00cfa91a704161003fc4e57246a74586989daeb7f6abeba3b7df409180c442", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be00cfa91a704161003fc4e57246a74586989daeb7f6abeba3b7df409180c442"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbformat/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99658, "scanner": "repobility-docker", "fingerprint": "6fef0f52a61041d57350ca37ee392b7514b800981cfe841db63d92df4cbd183b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6fef0f52a61041d57350ca37ee392b7514b800981cfe841db63d92df4cbd183b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99652, "scanner": "repobility-docker", "fingerprint": "09c81f87d3bd9fe6cfb87047b195c0828bd878ad7c354e7e227fada3c0eba01f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09c81f87d3bd9fe6cfb87047b195c0828bd878ad7c354e7e227fada3c0eba01f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nats/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99651, "scanner": "repobility-docker", "fingerprint": "ab230b54251aefeab0fc3fa0500bfe6638a603c5b2ee949399feac3b73115b53", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab230b54251aefeab0fc3fa0500bfe6638a603c5b2ee949399feac3b73115b53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nats/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99650, "scanner": "repobility-docker", "fingerprint": "1825c213ae5ae31cee0c9afaf0001f2df124fbaad424d483110fc3a36db4f0a3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1825c213ae5ae31cee0c9afaf0001f2df124fbaad424d483110fc3a36db4f0a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nanopb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99646, "scanner": "repobility-docker", "fingerprint": "e6e78000a9d8fd0d6a3ac1d264aa8115f3078f6c29581d346d1470840187d4cc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e6e78000a9d8fd0d6a3ac1d264aa8115f3078f6c29581d346d1470840187d4cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nanopb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99645, "scanner": "repobility-docker", "fingerprint": "ccbf619357cfae018a1254b9c39a9cb38dee8478478e6753e7bd5936bb36b7f6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ccbf619357cfae018a1254b9c39a9cb38dee8478478e6753e7bd5936bb36b7f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/naga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99642, "scanner": "repobility-docker", "fingerprint": "be592784d8ea770b6241d7677f6929d7eaa50d4750a1326a12389f229a56956d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be592784d8ea770b6241d7677f6929d7eaa50d4750a1326a12389f229a56956d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/naga/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99641, "scanner": "repobility-docker", "fingerprint": "ce92ff9020c4a3a0d9a14b3468ace211b6f808305d643eb558fdb91d4b5f34af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce92ff9020c4a3a0d9a14b3468ace211b6f808305d643eb558fdb91d4b5f34af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-server/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99638, "scanner": "repobility-docker", "fingerprint": "1d1713f5f541ed2a9cd984237cbd63cfa7220fae42d3390c0a26352f92a90662", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d1713f5f541ed2a9cd984237cbd63cfa7220fae42d3390c0a26352f92a90662"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-connector-j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99636, "scanner": "repobility-docker", "fingerprint": "2440e24e6efbcec0cd0374a411a8f52a1b8d693b9bc0fc4b069de923bedfb959", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2440e24e6efbcec0cd0374a411a8f52a1b8d693b9bc0fc4b069de923bedfb959"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-connector-j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99635, "scanner": "repobility-docker", "fingerprint": "a719f3ee2be7172066cf66089d42d89d49aea807e3501d319fda04b56fb3d45a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a719f3ee2be7172066cf66089d42d89d49aea807e3501d319fda04b56fb3d45a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mybatis-3/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99634, "scanner": "repobility-docker", "fingerprint": "4d06300d45e63e051df4ec0ac93414ab610d59e2bc7becfeadc176e8baf33500", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d06300d45e63e051df4ec0ac93414ab610d59e2bc7becfeadc176e8baf33500"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mybatis-3/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99633, "scanner": "repobility-docker", "fingerprint": "d0c0fa8127c3dbe850e709149049f0f6ac96f4f18707561ed8e5dc86ae886935", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0c0fa8127c3dbe850e709149049f0f6ac96f4f18707561ed8e5dc86ae886935"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/myanmar-tools/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99632, "scanner": "repobility-docker", "fingerprint": "f7e91b0f621a85c8554fd1df2a7ad27b3350c7fee873e26086a302c9eecbd530", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f7e91b0f621a85c8554fd1df2a7ad27b3350c7fee873e26086a302c9eecbd530"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/myanmar-tools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99631, "scanner": "repobility-docker", "fingerprint": "399bedeaa0771c2e9a510ef89df493459b635e0070aa12ec19b04a8f0a09b987", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|399bedeaa0771c2e9a510ef89df493459b635e0070aa12ec19b04a8f0a09b987"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/myanmar-tools/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99630, "scanner": "repobility-docker", "fingerprint": "01021a583996ea3fee5edfffbe59fbd897b729daa900828906b249080d74f6c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|01021a583996ea3fee5edfffbe59fbd897b729daa900828906b249080d74f6c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mxj/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99627, "scanner": "repobility-docker", "fingerprint": "2c5415e7dc1d967bc92455bfdcd928c84e44d73cb87956073a2582c8dd0b638c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c5415e7dc1d967bc92455bfdcd928c84e44d73cb87956073a2582c8dd0b638c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mxj/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99626, "scanner": "repobility-docker", "fingerprint": "f7ed52b5fc44a9bf2288dcb16de00c02c7122017bf390b79fd04829acac1c9e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f7ed52b5fc44a9bf2288dcb16de00c02c7122017bf390b79fd04829acac1c9e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mvel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99625, "scanner": "repobility-docker", "fingerprint": "b0c9d1ebf36d4652aa1efd863a1a1856bdcbc8034cd317c1a6f6f184cb6afc2f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0c9d1ebf36d4652aa1efd863a1a1856bdcbc8034cd317c1a6f6f184cb6afc2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mvel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99624, "scanner": "repobility-docker", "fingerprint": "7dd9bc5d9df31cf69f29f9f106a1f901ec3f20221fa387aab3b1493391c35138", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7dd9bc5d9df31cf69f29f9f106a1f901ec3f20221fa387aab3b1493391c35138"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mutagen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99623, "scanner": "repobility-docker", "fingerprint": "65f40028a74d9c985e7725312f25bc74e7bbc3e97af06d553eebe89647cbcce5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|65f40028a74d9c985e7725312f25bc74e7bbc3e97af06d553eebe89647cbcce5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mutagen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99622, "scanner": "repobility-docker", "fingerprint": "cb89d2a287e11826c99dff40809c85b74acab18e97fb4bb076ab3b06dbe8e616", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb89d2a287e11826c99dff40809c85b74acab18e97fb4bb076ab3b06dbe8e616"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99621, "scanner": "repobility-docker", "fingerprint": "b70863b469ef552309eee957d14d8106ac0bef8a3faf08978f94de01136031e2", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b70863b469ef552309eee957d14d8106ac0bef8a3faf08978f94de01136031e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99618, "scanner": "repobility-docker", "fingerprint": "d44e28e4d5f2f9fee9e9e318231834781cc94ce36489b52397f7855d77570a3f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d44e28e4d5f2f9fee9e9e318231834781cc94ce36489b52397f7855d77570a3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99617, "scanner": "repobility-docker", "fingerprint": "344871f5912e38feb2c77a8aa8a91f5c0c1f2a9880ec20605ee009a23871f5e9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|344871f5912e38feb2c77a8aa8a91f5c0c1f2a9880ec20605ee009a23871f5e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99612, "scanner": "repobility-docker", "fingerprint": "1381cb7ee21d4d9bcf2696f476a4c19447e1e65baa3a95c06c9bccf43fe74fd7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1381cb7ee21d4d9bcf2696f476a4c19447e1e65baa3a95c06c9bccf43fe74fd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99611, "scanner": "repobility-docker", "fingerprint": "c5b5608032eaa42f0ebd3599b098d2f5e9996ee34e7eebbc33af5b5b50ded115", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5b5608032eaa42f0ebd3599b098d2f5e9996ee34e7eebbc33af5b5b50ded115"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multierr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99610, "scanner": "repobility-docker", "fingerprint": "773648089d4898e0f91098d232529f65482bc9f316d906c16c4d2e1f023dd326", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|773648089d4898e0f91098d232529f65482bc9f316d906c16c4d2e1f023dd326"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multierr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99609, "scanner": "repobility-docker", "fingerprint": "981b3e3eb15b9c74cbfac0caf544529a56d553df27649127ffa8e0ebfee9ac14", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|981b3e3eb15b9c74cbfac0caf544529a56d553df27649127ffa8e0ebfee9ac14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99608, "scanner": "repobility-docker", "fingerprint": "fd83a6ccc1cd3456cbd9803394a3e60893d45be06e17954fd47c084906070fd7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd83a6ccc1cd3456cbd9803394a3e60893d45be06e17954fd47c084906070fd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99607, "scanner": "repobility-docker", "fingerprint": "817908fd006c69fd082910b960bfa44863a97f896b77e6be171413ab3328c8b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|817908fd006c69fd082910b960bfa44863a97f896b77e6be171413ab3328c8b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muduo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99604, "scanner": "repobility-docker", "fingerprint": "2f285bbb64a988a670954c81a2b4cb5e74972e7864e26627880495f2da818817", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2f285bbb64a988a670954c81a2b4cb5e74972e7864e26627880495f2da818817"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muduo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99603, "scanner": "repobility-docker", "fingerprint": "f7487141c73ab5692a0cbb05b17a360aafa43a2c798f0e596a9c7bcdabb0be39", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f7487141c73ab5692a0cbb05b17a360aafa43a2c798f0e596a9c7bcdabb0be39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mtail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99602, "scanner": "repobility-docker", "fingerprint": "d670fe82e94c6c5a3a25f1912e02792b44b21387c82e9c8ebd1a383b23d3b95a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d670fe82e94c6c5a3a25f1912e02792b44b21387c82e9c8ebd1a383b23d3b95a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mtail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99601, "scanner": "repobility-docker", "fingerprint": "d5f7447f2903cd24449f18397133e391b806dd906ec5dbc444b15b0e98c2395f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5f7447f2903cd24449f18397133e391b806dd906ec5dbc444b15b0e98c2395f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msquic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99599, "scanner": "repobility-docker", "fingerprint": "bcb3fe97946bc8465c8ffa781dd584683b4648c1851d3028d21eeb88a29b45f9", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bcb3fe97946bc8465c8ffa781dd584683b4648c1851d3028d21eeb88a29b45f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msquic/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99598, "scanner": "repobility-docker", "fingerprint": "bf74703563ff706a4306dec300f328719f9f16789ed583fecd24e57ca3d32574", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf74703563ff706a4306dec300f328719f9f16789ed583fecd24e57ca3d32574"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msquic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99597, "scanner": "repobility-docker", "fingerprint": "aa18ee2658e615eeac936f77f5c458ac2aa6bfedaa0014b0b1d21a7ed5ab4372", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa18ee2658e615eeac936f77f5c458ac2aa6bfedaa0014b0b1d21a7ed5ab4372"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99595, "scanner": "repobility-docker", "fingerprint": "957bff9bdb9663688c3767b455ee1bdfe4716efa543420f3b7d170ea06e54b5e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|957bff9bdb9663688c3767b455ee1bdfe4716efa543420f3b7d170ea06e54b5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99594, "scanner": "repobility-docker", "fingerprint": "0d555f3ede653f8a1f191ad85aca8d6394f4dddf031b1aef2376abad6abec5dd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0d555f3ede653f8a1f191ad85aca8d6394f4dddf031b1aef2376abad6abec5dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99591, "scanner": "repobility-docker", "fingerprint": "fcac4b014942090f7e3ca56fbee7cecc6627200d4db85d86fbe18672d85342c6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fcac4b014942090f7e3ca56fbee7cecc6627200d4db85d86fbe18672d85342c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99590, "scanner": "repobility-docker", "fingerprint": "0ef09b4952ad9ed3df3414876ecd016b64623d008c0dc0abec47c6d99f91b35b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ef09b4952ad9ed3df3414876ecd016b64623d008c0dc0abec47c6d99f91b35b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msal/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99589, "scanner": "repobility-docker", "fingerprint": "d0b7bfadc0c3556aed5b4d5bd49d4593aa464769b8a15ebc7a9b8662ae9ce97f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0b7bfadc0c3556aed5b4d5bd49d4593aa464769b8a15ebc7a9b8662ae9ce97f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ms-tpm-20-ref/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99586, "scanner": "repobility-docker", "fingerprint": "67eed9e6bfa073621175c0c3b65ab6ae9d82dc7fdd1036fefc862ab8ff42190a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67eed9e6bfa073621175c0c3b65ab6ae9d82dc7fdd1036fefc862ab8ff42190a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99583, "scanner": "repobility-docker", "fingerprint": "aa51dc5d49fa2650966d4e3f2bc66a0f7958eb5d463ec3ba83c4bca954b6ca54", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa51dc5d49fa2650966d4e3f2bc66a0f7958eb5d463ec3ba83c4bca954b6ca54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99582, "scanner": "repobility-docker", "fingerprint": "8bbf571dd6634bc58b9d88042e72d1afdb05a7bf2fcdc3d1994b9c2b96987042", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bbf571dd6634bc58b9d88042e72d1afdb05a7bf2fcdc3d1994b9c2b96987042"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mrab-regex/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99581, "scanner": "repobility-docker", "fingerprint": "7183a3c7b2941b59883b350684b1f6d7a1be802fe93998e1e8efbec6a897f579", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7183a3c7b2941b59883b350684b1f6d7a1be802fe93998e1e8efbec6a897f579"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mrab-regex/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99580, "scanner": "repobility-docker", "fingerprint": "1838501d8537f907af32965b93388841cae4ffd27e0d25c330bbdd66f7987307", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1838501d8537f907af32965b93388841cae4ffd27e0d25c330bbdd66f7987307"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpv/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99578, "scanner": "repobility-docker", "fingerprint": "7b9ef6e485384191114894921768fe7ecf2987169b2aabe4005edcc6a2dcf706", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b9ef6e485384191114894921768fe7ecf2987169b2aabe4005edcc6a2dcf706"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpv/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99577, "scanner": "repobility-docker", "fingerprint": "28595e5d14ea49f5913fd3b750f7add219ce5a89782a81cae17182f588d4181d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28595e5d14ea49f5913fd3b750f7add219ce5a89782a81cae17182f588d4181d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpg123/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99574, "scanner": "repobility-docker", "fingerprint": "b8ea6f752061b0a748d1d686ca5a3d41db3735f2d32a567b03abfd0a6946f877", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8ea6f752061b0a748d1d686ca5a3d41db3735f2d32a567b03abfd0a6946f877"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpg123/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99573, "scanner": "repobility-docker", "fingerprint": "00b49b96c7c1aa43f02046729c4aafbde952488630723813ad9375bb1856c5cb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|00b49b96c7c1aa43f02046729c4aafbde952488630723813ad9375bb1856c5cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4san/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99572, "scanner": "repobility-docker", "fingerprint": "b224b1f8071fe0a6b16d4f60cfd33348593c404822ab4913b8750dbbd3f5298d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b224b1f8071fe0a6b16d4f60cfd33348593c404822ab4913b8750dbbd3f5298d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4san/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99571, "scanner": "repobility-docker", "fingerprint": "c57c723707b62a29a4b66d2004ce60443750fef9673dfc7b85e8c00bad35f770", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c57c723707b62a29a4b66d2004ce60443750fef9673dfc7b85e8c00bad35f770"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4parse-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99568, "scanner": "repobility-docker", "fingerprint": "6dc8440565fd9e4adfe539c9597d255ba184ae1826146e36d3de1ba0893b0650", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6dc8440565fd9e4adfe539c9597d255ba184ae1826146e36d3de1ba0893b0650"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4parse-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99567, "scanner": "repobility-docker", "fingerprint": "fd192b9167d7e429ff22e4d08ec79346ab9c5e028d1b09e803fe5188b4a2cf60", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd192b9167d7e429ff22e4d08ec79346ab9c5e028d1b09e803fe5188b4a2cf60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosquitto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99564, "scanner": "repobility-docker", "fingerprint": "2c2d3a923592fb44a01d0d841335a021b612950e3f57890d7aea1b31b2b31e8b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c2d3a923592fb44a01d0d841335a021b612950e3f57890d7aea1b31b2b31e8b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosquitto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99563, "scanner": "repobility-docker", "fingerprint": "c8d1371ef63a30147a0bd558a78cab8cf4b90974d68202f0b3b301a11e3db70c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8d1371ef63a30147a0bd558a78cab8cf4b90974d68202f0b3b301a11e3db70c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99560, "scanner": "repobility-docker", "fingerprint": "3a9eaadb40c132ba39af5a00a2f7c847359e27c76d3b793a36d744077e639234", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a9eaadb40c132ba39af5a00a2f7c847359e27c76d3b793a36d744077e639234"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99559, "scanner": "repobility-docker", "fingerprint": "6c55e674a1690a446d2000bc8661f57dbda1a241792c87740cdb6f31ba4024d0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c55e674a1690a446d2000bc8661f57dbda1a241792c87740cdb6f31ba4024d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/more-itertools/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99558, "scanner": "repobility-docker", "fingerprint": "0b35425041b57e7634ec83fdbf08122503cee3629567bf88ea8b33e6de5deb27", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b35425041b57e7634ec83fdbf08122503cee3629567bf88ea8b33e6de5deb27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/more-itertools/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99557, "scanner": "repobility-docker", "fingerprint": "19a7d06ff8988ca0d657a60ef9ed4545686b011d7ca87a01281b4d279b716fcc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19a7d06ff8988ca0d657a60ef9ed4545686b011d7ca87a01281b4d279b716fcc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongoose/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99556, "scanner": "repobility-docker", "fingerprint": "1963db270b3aad4dfc448e44da406fe78869dd2758074cc99160b737f1d28a3e", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1963db270b3aad4dfc448e44da406fe78869dd2758074cc99160b737f1d28a3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongoose/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99555, "scanner": "repobility-docker", "fingerprint": "21985ad4cab59486bb1530414fc159440f2ccb5a5ab604c1602704da821b6577", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21985ad4cab59486bb1530414fc159440f2ccb5a5ab604c1602704da821b6577"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongoose/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99554, "scanner": "repobility-docker", "fingerprint": "53a64dd8dc8eb6ac5e964148ff092b8213d45412d2016f43396d2c85400a126f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53a64dd8dc8eb6ac5e964148ff092b8213d45412d2016f43396d2c85400a126f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongo-go-driver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99551, "scanner": "repobility-docker", "fingerprint": "eccfa07bf00465b3e6bb046565a8f4b3f2722ac6fad6dd746d370e6a04aaafb5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eccfa07bf00465b3e6bb046565a8f4b3f2722ac6fad6dd746d370e6a04aaafb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongo-go-driver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99550, "scanner": "repobility-docker", "fingerprint": "2fa3ea0fe8d889109218bc3129d1344570559aec737b3150c43ea85c2d27964a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2fa3ea0fe8d889109218bc3129d1344570559aec737b3150c43ea85c2d27964a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/monero/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99549, "scanner": "repobility-docker", "fingerprint": "56032f3ecc4ba8a822ddeca9ecb24d77fb1affe027042bf5529530132f76d456", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|56032f3ecc4ba8a822ddeca9ecb24d77fb1affe027042bf5529530132f76d456"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/monero/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99548, "scanner": "repobility-docker", "fingerprint": "ad6d4ccdaaa517ee90a03bfd4c2286cb32c0a2dd6e638dcb90fa6c8c94a8c584", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad6d4ccdaaa517ee90a03bfd4c2286cb32c0a2dd6e638dcb90fa6c8c94a8c584"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/monero/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99547, "scanner": "repobility-docker", "fingerprint": "5f0c8227ed28901d047919ee35baf215a53a996a78734cd3cfac375b4815ecf3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f0c8227ed28901d047919ee35baf215a53a996a78734cd3cfac375b4815ecf3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/model-transparency/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99544, "scanner": "repobility-docker", "fingerprint": "218b6759fbe292eaf09e7dc70b36e614a9c4397debad6ca117cd10186843bf7c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|218b6759fbe292eaf09e7dc70b36e614a9c4397debad6ca117cd10186843bf7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/model-transparency/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99543, "scanner": "repobility-docker", "fingerprint": "0ebebc4fadc218b940aa0bfef66d5a15ec4b641112ffdf83a6750d256f9ea7f8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ebebc4fadc218b940aa0bfef66d5a15ec4b641112ffdf83a6750d256f9ea7f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/moby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99540, "scanner": "repobility-docker", "fingerprint": "e49e8be9db1bf2a63622927209bb2564788be8dde28a887c7d71e5ef203a706c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e49e8be9db1bf2a63622927209bb2564788be8dde28a887c7d71e5ef203a706c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/moby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99539, "scanner": "repobility-docker", "fingerprint": "63990a1cfc930293b0a76efdd46812b8e747f71495f73f1a7d77081342b47ec4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63990a1cfc930293b0a76efdd46812b8e747f71495f73f1a7d77081342b47ec4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minizip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99536, "scanner": "repobility-docker", "fingerprint": "3ea94564b37dfda781df84c13b7580651e556da35bfcf13ec04aed056c6f3c07", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ea94564b37dfda781df84c13b7580651e556da35bfcf13ec04aed056c6f3c07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minizip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99535, "scanner": "repobility-docker", "fingerprint": "11aaabd643be628a5689cf08363aafbdf704b8fd76faad56c97221f20eeb2902", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11aaabd643be628a5689cf08363aafbdf704b8fd76faad56c97221f20eeb2902"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz_oxide/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99532, "scanner": "repobility-docker", "fingerprint": "0443af39ff83b5ce554c95f4f4fffa2874a68d031f17499b8315952514a40737", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0443af39ff83b5ce554c95f4f4fffa2874a68d031f17499b8315952514a40737"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz_oxide/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99531, "scanner": "repobility-docker", "fingerprint": "adea5b992990d49a38c5382f61bf008b7281074f31c14cd5ce067fdd15ccb776", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|adea5b992990d49a38c5382f61bf008b7281074f31c14cd5ce067fdd15ccb776"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99528, "scanner": "repobility-docker", "fingerprint": "7df77490c2ced7a6350e331415b4fdd35a8497793bb52a6767416b97938dab84", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7df77490c2ced7a6350e331415b4fdd35a8497793bb52a6767416b97938dab84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99527, "scanner": "repobility-docker", "fingerprint": "f0ba16ae464903a3e122e149acc017a0f7e3ecc7867333b64cbfb3df5ecf44e3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0ba16ae464903a3e122e149acc017a0f7e3ecc7867333b64cbfb3df5ecf44e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99526, "scanner": "repobility-docker", "fingerprint": "fbcd4ac7f271d98e8bc759e9a1ef76b9216399c6ed6da371efffac9e031c0802", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbcd4ac7f271d98e8bc759e9a1ef76b9216399c6ed6da371efffac9e031c0802"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99525, "scanner": "repobility-docker", "fingerprint": "de834bbaafef64fbb4aa415f6abf4ce36dd6bb3a21b11313976c2b3834371988", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de834bbaafef64fbb4aa415f6abf4ce36dd6bb3a21b11313976c2b3834371988"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/migtd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99522, "scanner": "repobility-docker", "fingerprint": "77f1aad40ad0cde241280f96eab83e47aed63c66d07f34ac93e3e6b1cb9e5c69", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77f1aad40ad0cde241280f96eab83e47aed63c66d07f34ac93e3e6b1cb9e5c69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/migtd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99521, "scanner": "repobility-docker", "fingerprint": "adf5ac808e5a9fbdb78ea86f877a4458b28c6ba342cd6c68dc6a7d99b43b3388", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|adf5ac808e5a9fbdb78ea86f877a4458b28c6ba342cd6c68dc6a7d99b43b3388"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/micronaut/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99518, "scanner": "repobility-docker", "fingerprint": "55b9f0105077adea67e74f2126d98887dca164148cad982247c091fe10b0088f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55b9f0105077adea67e74f2126d98887dca164148cad982247c091fe10b0088f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/micronaut/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99517, "scanner": "repobility-docker", "fingerprint": "d35218f48be49b1120e0dbd34d7e99ff342e592f95bb5b7c8e7572f22cd0a94b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d35218f48be49b1120e0dbd34d7e99ff342e592f95bb5b7c8e7572f22cd0a94b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/metallb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99516, "scanner": "repobility-docker", "fingerprint": "c55cce45ea6f7cbac7042f550021916d7e292130349275e55d415305539267fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c55cce45ea6f7cbac7042f550021916d7e292130349275e55d415305539267fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/metallb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99515, "scanner": "repobility-docker", "fingerprint": "783efcfd6792f2fe9b33f71c845f4643f5a9e15028fd51c411597d8e375ab549", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|783efcfd6792f2fe9b33f71c845f4643f5a9e15028fd51c411597d8e375ab549"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/metadata-extractor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99514, "scanner": "repobility-docker", "fingerprint": "5ebf2ff653055fac660b689728c7eeeb15f7ee09666dc678b8ce2d8d24eb28f4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ebf2ff653055fac660b689728c7eeeb15f7ee09666dc678b8ce2d8d24eb28f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/meshoptimizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99511, "scanner": "repobility-docker", "fingerprint": "d441be60a1c8356ca3bafb4fc3e76738865cf5dd67cdb45165933246cd5147e5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d441be60a1c8356ca3bafb4fc3e76738865cf5dd67cdb45165933246cd5147e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/meshoptimizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99510, "scanner": "repobility-docker", "fingerprint": "dfa29c0a03769cb5459a622073cf5d3a7e89835da5955200318fa7945213c505", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dfa29c0a03769cb5459a622073cf5d3a7e89835da5955200318fa7945213c505"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mercurial/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99507, "scanner": "repobility-docker", "fingerprint": "2828106e4abb3df5b1a9bb583b4e73d84edd21c7916c4b251ce730545d371323", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2828106e4abb3df5b1a9bb583b4e73d84edd21c7916c4b251ce730545d371323"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mercurial/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99506, "scanner": "repobility-docker", "fingerprint": "eaf7fece5ef00d9637e1daf8eedd2dfd34de8d86e9a490b5aa9255a50dd1c54d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eaf7fece5ef00d9637e1daf8eedd2dfd34de8d86e9a490b5aa9255a50dd1c54d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/memcached/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99503, "scanner": "repobility-docker", "fingerprint": "d98bc68eb0a2a2ecb3fa567422d6ec682af64684d1ca3fe18bd931dfbe1fa740", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d98bc68eb0a2a2ecb3fa567422d6ec682af64684d1ca3fe18bd931dfbe1fa740"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdurl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99502, "scanner": "repobility-docker", "fingerprint": "2dff43d63519d6d4fb50e9f50dadbe9378e55f1dc06d44ee7a5c8173f9d1af26", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2dff43d63519d6d4fb50e9f50dadbe9378e55f1dc06d44ee7a5c8173f9d1af26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdurl/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99501, "scanner": "repobility-docker", "fingerprint": "4837f51e10ea3e3f0c8d9dac076123e9e162877801325400e139ac73251a5ac3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4837f51e10ea3e3f0c8d9dac076123e9e162877801325400e139ac73251a5ac3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdit-py-plugins/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99500, "scanner": "repobility-docker", "fingerprint": "47a6666cdb6c13e90809734c20124dbcbcf9702a2ce119b3e280e867915b1312", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47a6666cdb6c13e90809734c20124dbcbcf9702a2ce119b3e280e867915b1312"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbtools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99497, "scanner": "repobility-docker", "fingerprint": "ae0f79618d10b6b4ed75ec66d2790259d22e79586a482af5280c49799fe8b1f5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae0f79618d10b6b4ed75ec66d2790259d22e79586a482af5280c49799fe8b1f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbtools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99496, "scanner": "repobility-docker", "fingerprint": "8b9703b326dfcb1e9b19b1bb5f5301aa4f7bdcc9942763b60aadf01c0d4087b8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b9703b326dfcb1e9b19b1bb5f5301aa4f7bdcc9942763b60aadf01c0d4087b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbook-i18n-helpers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99495, "scanner": "repobility-docker", "fingerprint": "26c14af25cbe3ba4e3d654da49fa8d97606a23e3d80468e525d21795da72c8ac", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26c14af25cbe3ba4e3d654da49fa8d97606a23e3d80468e525d21795da72c8ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbook-i18n-helpers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99494, "scanner": "repobility-docker", "fingerprint": "1d864ff73995026161c0fd6b8c3711b292d94b1b51dca66b5e3778a1a08fd56b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d864ff73995026161c0fd6b8c3711b292d94b1b51dca66b5e3778a1a08fd56b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/md4c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99491, "scanner": "repobility-docker", "fingerprint": "15de2dd294502bd1385eee9eb37af51802f35cbc3290b45573b1e506be0f250e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|15de2dd294502bd1385eee9eb37af51802f35cbc3290b45573b1e506be0f250e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mccabe/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99490, "scanner": "repobility-docker", "fingerprint": "2a5a43b4bec89334185b1d73ec1b5aae14531bdf3dc9238f34139814df18bafe", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a5a43b4bec89334185b1d73ec1b5aae14531bdf3dc9238f34139814df18bafe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mccabe/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99489, "scanner": "repobility-docker", "fingerprint": "8a652f6d111775a6e6858515106c523e3766cd7fc57ab364067ccfb16dd442c0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a652f6d111775a6e6858515106c523e3766cd7fc57ab364067ccfb16dd442c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99484, "scanner": "repobility-docker", "fingerprint": "e021abd3f2d9c30c5d9b579ee8f7d716ae1ed68297375da6e0a42358955fcb61", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e021abd3f2d9c30c5d9b579ee8f7d716ae1ed68297375da6e0a42358955fcb61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99483, "scanner": "repobility-docker", "fingerprint": "2b380d0009638b470a8fb224279556a5a0390e6dcdb9433da4357a1eec1c445f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b380d0009638b470a8fb224279556a5a0390e6dcdb9433da4357a1eec1c445f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven-model/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99480, "scanner": "repobility-docker", "fingerprint": "7254affd59fab41ed61661de9b90990c2343617e272485471fd5c108ca87b518", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7254affd59fab41ed61661de9b90990c2343617e272485471fd5c108ca87b518"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven-model/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99479, "scanner": "repobility-docker", "fingerprint": "3f6f90b33719d840ec72a44af97b475fb652fddc8db9a67c9a6d42776ec3cb39", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f6f90b33719d840ec72a44af97b475fb652fddc8db9a67c9a6d42776ec3cb39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99478, "scanner": "repobility-docker", "fingerprint": "24fca2d04ae30b3e87ecec89c416c353df1d0dc726c68984eebb6b5868202241", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|24fca2d04ae30b3e87ecec89c416c353df1d0dc726c68984eebb6b5868202241"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99477, "scanner": "repobility-docker", "fingerprint": "e448480fd86d2e7c14ce958d22384d1f75e5d132b87ebf0d953f817622037795", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e448480fd86d2e7c14ce958d22384d1f75e5d132b87ebf0d953f817622037795"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99470, "scanner": "repobility-docker", "fingerprint": "ac76c969a6134087d076e47dcb44ba1a75d298c886487dd4e784d79f9e241f77", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac76c969a6134087d076e47dcb44ba1a75d298c886487dd4e784d79f9e241f77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99467, "scanner": "repobility-docker", "fingerprint": "9e4fb951fe6246b7ab1be8ce99156457dd50c27c1f84d1b2ae8b53a22f8ff8c3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e4fb951fe6246b7ab1be8ce99156457dd50c27c1f84d1b2ae8b53a22f8ff8c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99466, "scanner": "repobility-docker", "fingerprint": "117a28a2f425800da3061e5319a21ddd81a35b222c41d7061bd9f030511dac01", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|117a28a2f425800da3061e5319a21ddd81a35b222c41d7061bd9f030511dac01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/markupsafe/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99464, "scanner": "repobility-docker", "fingerprint": "9ec103b1e22c4e49afc554082fcd5a0d712ae2cfab121d42cfa2a0390819108d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ec103b1e22c4e49afc554082fcd5a0d712ae2cfab121d42cfa2a0390819108d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/markupsafe/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99463, "scanner": "repobility-docker", "fingerprint": "b132f1fcec224b07aa066aad1121cecff6e5ccf99abd34278fb6d6649581c155", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b132f1fcec224b07aa066aad1121cecff6e5ccf99abd34278fb6d6649581c155"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/markdown-it-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99462, "scanner": "repobility-docker", "fingerprint": "d704b9f4a84238ce55e39b71d6d62d26a989803bfad570d6ce9bc0545d6d4671", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d704b9f4a84238ce55e39b71d6d62d26a989803bfad570d6ce9bc0545d6d4671"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/markdown-it-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99461, "scanner": "repobility-docker", "fingerprint": "67b3d8ff5f761181a0ce9ed0811c596466d7aeb1a69794ec5614be17c1b83037", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67b3d8ff5f761181a0ce9ed0811c596466d7aeb1a69794ec5614be17c1b83037"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mariadb-connector-j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99460, "scanner": "repobility-docker", "fingerprint": "0ead590b1415ec3b319492ae795e21160fe069504480801549ec0142111db100", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ead590b1415ec3b319492ae795e21160fe069504480801549ec0142111db100"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mariadb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99458, "scanner": "repobility-docker", "fingerprint": "9db5b15ba2b629dfe306c303bc8d20577e74c8f8451614d5ec12a37d292a21fe", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9db5b15ba2b629dfe306c303bc8d20577e74c8f8451614d5ec12a37d292a21fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mariadb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99457, "scanner": "repobility-docker", "fingerprint": "94dcf55b84d50f9dc3ea401140986a99e7e908cd34d9e65b53eeed65da81d1b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|94dcf55b84d50f9dc3ea401140986a99e7e908cd34d9e65b53eeed65da81d1b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mapserver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99454, "scanner": "repobility-docker", "fingerprint": "27c7884a12bf8d8cd61245b6a55b4e3fcb58cdcb92be96335e080195b3cee667", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|27c7884a12bf8d8cd61245b6a55b4e3fcb58cdcb92be96335e080195b3cee667"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mapserver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99453, "scanner": "repobility-docker", "fingerprint": "98329e18d3291ea414760f6d266c44141c0c7a40bd7010082c31f9c2cb44c875", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98329e18d3291ea414760f6d266c44141c0c7a40bd7010082c31f9c2cb44c875"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mako/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99450, "scanner": "repobility-docker", "fingerprint": "c8dbc2b27bc69d5727228d1de521d20a20c66dad918abf6d68e58aa37db16f9d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8dbc2b27bc69d5727228d1de521d20a20c66dad918abf6d68e58aa37db16f9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mako/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99449, "scanner": "repobility-docker", "fingerprint": "526fb8d3cfc0c7305119564fc257c3f088decdddf5dba52ecc9a9d8d9d6f97a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|526fb8d3cfc0c7305119564fc257c3f088decdddf5dba52ecc9a9d8d9d6f97a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/magic-enum/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99445, "scanner": "repobility-docker", "fingerprint": "df3eec379ebae73c8094b681f836e91dfd692c406c67bb71257d6ee8eaef6770", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df3eec379ebae73c8094b681f836e91dfd692c406c67bb71257d6ee8eaef6770"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/magic-enum/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99444, "scanner": "repobility-docker", "fingerprint": "f1536b540d9d2d312f3cb649e3c10a39b3c74858126012af1d4c8af2d6fd5f76", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1536b540d9d2d312f3cb649e3c10a39b3c74858126012af1d4c8af2d6fd5f76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99441, "scanner": "repobility-docker", "fingerprint": "fcfa529cea677c3d5b7eec62ac65397020bb7cfa73a59942499a1d156f4aa9f4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fcfa529cea677c3d5b7eec62ac65397020bb7cfa73a59942499a1d156f4aa9f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99440, "scanner": "repobility-docker", "fingerprint": "164bddfa3962c027f1546e0053b47ab708f72bf004574a7696b731309d3c53b2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|164bddfa3962c027f1546e0053b47ab708f72bf004574a7696b731309d3c53b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzma/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99437, "scanner": "repobility-docker", "fingerprint": "eb66d82727540ee00d9e2f83bb9d1d5967f0fbbea1aca83260b212093f6ef2c3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb66d82727540ee00d9e2f83bb9d1d5967f0fbbea1aca83260b212093f6ef2c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzma/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99436, "scanner": "repobility-docker", "fingerprint": "738d7abdac8532ccaae15480fa270b20c94ae0cc4d770f228c1210d0d9834ada", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|738d7abdac8532ccaae15480fa270b20c94ae0cc4d770f228c1210d0d9834ada"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lz4_flex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99435, "scanner": "repobility-docker", "fingerprint": "b64e525e08a2a783eb0d498e66b208c30f25e4fbc868fdc10b6f5c6f363e282e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b64e525e08a2a783eb0d498e66b208c30f25e4fbc868fdc10b6f5c6f363e282e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lz4_flex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99434, "scanner": "repobility-docker", "fingerprint": "ba1ad706cb1fe917280d107db8e73dc230ad5e81b414644960ef48a85fa46411", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba1ad706cb1fe917280d107db8e73dc230ad5e81b414644960ef48a85fa46411"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lz4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99433, "scanner": "repobility-docker", "fingerprint": "eb15303742a83327d7f53e08c342955f8287bd2294afd210e0a4df0dadf9f4d3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb15303742a83327d7f53e08c342955f8287bd2294afd210e0a4df0dadf9f4d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lz4/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99432, "scanner": "repobility-docker", "fingerprint": "2fdb8b0b713ba631978b800369b822d757cad0f578216ddd73de00e4bf333a24", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2fdb8b0b713ba631978b800369b822d757cad0f578216ddd73de00e4bf333a24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99428, "scanner": "repobility-docker", "fingerprint": "2551915c780956b8ac4644de2aa5599b9cfb6b5f2fdcc6c68777b303c824d45c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2551915c780956b8ac4644de2aa5599b9cfb6b5f2fdcc6c68777b303c824d45c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99427, "scanner": "repobility-docker", "fingerprint": "44acf498a611a9dcddd8e008dd859d94d4fe440f1cbb5c249af68af4a4115dd7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|44acf498a611a9dcddd8e008dd859d94d4fe440f1cbb5c249af68af4a4115dd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99426, "scanner": "repobility-docker", "fingerprint": "0cbce7760cff102b9930e68423df2d46546b6276d7630dc1790a444bc70182b3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cbce7760cff102b9930e68423df2d46546b6276d7630dc1790a444bc70182b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99425, "scanner": "repobility-docker", "fingerprint": "2a84b53da1245f5924c88117461db2c97f5d2edbb575cd389e17fbc8ee541acb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a84b53da1245f5924c88117461db2c97f5d2edbb575cd389e17fbc8ee541acb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lwan/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 99423, "scanner": "repobility-docker", "fingerprint": "d6cb5633156f5507977edebd6d235a74484a73296bf1aad74a881c509ee4c125", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6cb5633156f5507977edebd6d235a74484a73296bf1aad74a881c509ee4c125"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lwan/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99422, "scanner": "repobility-docker", "fingerprint": "df222657a71e128e309a090d36e436792c9c28b7122e945a4ab968ba20d82571", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df222657a71e128e309a090d36e436792c9c28b7122e945a4ab968ba20d82571"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lucene/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99419, "scanner": "repobility-docker", "fingerprint": "b216d006fdb4564a782359acb5456e9bc835bb57d47789fafede712d1569f911", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b216d006fdb4564a782359acb5456e9bc835bb57d47789fafede712d1569f911"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lucene/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99418, "scanner": "repobility-docker", "fingerprint": "a6e28e597702d846bb398b12ed3f9d05c5bbd9883e0c494f7eae517693b0b00c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6e28e597702d846bb398b12ed3f9d05c5bbd9883e0c494f7eae517693b0b00c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lua-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99415, "scanner": "repobility-docker", "fingerprint": "745c37375a392ac1847706175226427cad17c4c248b1652b0cd03dbb95d0341e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|745c37375a392ac1847706175226427cad17c4c248b1652b0cd03dbb95d0341e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lua-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99414, "scanner": "repobility-docker", "fingerprint": "db1a5e6e6530c899c4c8d91788bd68416344e946c5bc3371288540e60779f0a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db1a5e6e6530c899c4c8d91788bd68416344e946c5bc3371288540e60779f0a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lua/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99413, "scanner": "repobility-docker", "fingerprint": "a8a1bc39ec49c3e471f806f3ab50bb2a444be7e79ada60a8568976f58b86a469", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8a1bc39ec49c3e471f806f3ab50bb2a444be7e79ada60a8568976f58b86a469"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lotus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99410, "scanner": "repobility-docker", "fingerprint": "744865e254952cfc8be94ba538c2147a71f5db0fcd381dcf512de9219a6fe52e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|744865e254952cfc8be94ba538c2147a71f5db0fcd381dcf512de9219a6fe52e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/looker-sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99407, "scanner": "repobility-docker", "fingerprint": "d03d2f4de57b47053173e67f05592bf3bd64b92946d0584428c8b92266e40784", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d03d2f4de57b47053173e67f05592bf3bd64b92946d0584428c8b92266e40784"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/looker-sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99406, "scanner": "repobility-docker", "fingerprint": "10184442946c6f0797e788df4d79e0c3ab168e71bedf87d3444ca657f3b973cd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10184442946c6f0797e788df4d79e0c3ab168e71bedf87d3444ca657f3b973cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/loki/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99405, "scanner": "repobility-docker", "fingerprint": "faa60a329770fd2d8053c3b3cc79b0f6960ab594fe8e06190a6d31a1d3892245", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|faa60a329770fd2d8053c3b3cc79b0f6960ab594fe8e06190a6d31a1d3892245"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/loki/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99404, "scanner": "repobility-docker", "fingerprint": "9f4e15fe7f1ba86a6766932720149a726d0ef7ad00f689455958bd51ab5999ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f4e15fe7f1ba86a6766932720149a726d0ef7ad00f689455958bd51ab5999ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/logback/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99403, "scanner": "repobility-docker", "fingerprint": "9258ff98d4dcb048b3d480f808381f4c0380f18f3c86290be0ed6717a9c770b8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9258ff98d4dcb048b3d480f808381f4c0380f18f3c86290be0ed6717a9c770b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/logback/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99402, "scanner": "repobility-docker", "fingerprint": "a805f0c778f995745c0d7248d0cab55eba221c8179285af7aac353480c32fc10", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a805f0c778f995745c0d7248d0cab55eba221c8179285af7aac353480c32fc10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99397, "scanner": "repobility-docker", "fingerprint": "9f3cbb402743412c034d21f31f61afc5e84366287f616656d867708730245dda", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f3cbb402743412c034d21f31f61afc5e84366287f616656d867708730245dda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99396, "scanner": "repobility-docker", "fingerprint": "bd01a845ce4df2e0e34b73e1be355b03610b256cd0e28819155042aefccbcadf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd01a845ce4df2e0e34b73e1be355b03610b256cd0e28819155042aefccbcadf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99395, "scanner": "repobility-docker", "fingerprint": "738250fe5087eb8c75a70c92f977b6c9b2f82266196e2a1408072bc8509d2884", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|738250fe5087eb8c75a70c92f977b6c9b2f82266196e2a1408072bc8509d2884"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99394, "scanner": "repobility-docker", "fingerprint": "d4f4a3d526d9c387144d4f96548ddf3476d1a5f346973a5dd25e922309943733", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4f4a3d526d9c387144d4f96548ddf3476d1a5f346973a5dd25e922309943733"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99391, "scanner": "repobility-docker", "fingerprint": "efb089dfac82c3bcd5435ab5a990bf018c2eea470035a0ac9833dc61c1a836a0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|efb089dfac82c3bcd5435ab5a990bf018c2eea470035a0ac9833dc61c1a836a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99390, "scanner": "repobility-docker", "fingerprint": "d6eb223b578367d5087fd5135f5766a18b63fc17cb4735f6f55019b7acfa97c8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6eb223b578367d5087fd5135f5766a18b63fc17cb4735f6f55019b7acfa97c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodash/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99389, "scanner": "repobility-docker", "fingerprint": "b6e27ac35b7f423d26056235536ced62028ffe048f0b9929ceea56abc0bde7c2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6e27ac35b7f423d26056235536ced62028ffe048f0b9929ceea56abc0bde7c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodash/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99388, "scanner": "repobility-docker", "fingerprint": "272e605607ff045b73ef231ca988fc47f4e24e563bce8011230c3c8151ef8cf2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|272e605607ff045b73ef231ca988fc47f4e24e563bce8011230c3c8151ef8cf2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm_libcxxabi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99387, "scanner": "repobility-docker", "fingerprint": "078c559a9fa4951d21aadf56c98c4d53389750fbc7f75b8b85db1a14132dccee", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|078c559a9fa4951d21aadf56c98c4d53389750fbc7f75b8b85db1a14132dccee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm_libcxxabi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99386, "scanner": "repobility-docker", "fingerprint": "232c993fd5c767563369149f1d814897809755237e22aa60cfc34c58e0c885cf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|232c993fd5c767563369149f1d814897809755237e22aa60cfc34c58e0c885cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm_libcxx/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99385, "scanner": "repobility-docker", "fingerprint": "317d85ced60b0fa2ec81dc76a8479cd62d57d4fee5fdbbfdef47059e6df92707", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|317d85ced60b0fa2ec81dc76a8479cd62d57d4fee5fdbbfdef47059e6df92707"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99382, "scanner": "repobility-docker", "fingerprint": "f726d2bde85caf1f6fbd9e9ac1d6bbd2fc1e7994bc720eb58347e80df0877322", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f726d2bde85caf1f6fbd9e9ac1d6bbd2fc1e7994bc720eb58347e80df0877322"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99381, "scanner": "repobility-docker", "fingerprint": "98e2a4ceae4f03e41aa21e10961a1095c809345dc5cf8c4775eae113f4548fa9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98e2a4ceae4f03e41aa21e10961a1095c809345dc5cf8c4775eae113f4548fa9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llhttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99378, "scanner": "repobility-docker", "fingerprint": "27f78d964a25cccaf71eef7b031a38709083e45326feddbea4b523dedee47a90", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|27f78d964a25cccaf71eef7b031a38709083e45326feddbea4b523dedee47a90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llhttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99377, "scanner": "repobility-docker", "fingerprint": "0eef989e3c7f6c74f44a9a09299868e8f3c81b373407f290f6bd55fcafe91a8e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0eef989e3c7f6c74f44a9a09299868e8f3c81b373407f290f6bd55fcafe91a8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldpd/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99374, "scanner": "repobility-docker", "fingerprint": "19657b1aec5b3b46cd3a9fad8a90d1ecbd9a5534efe79983ee013b74c669a1a3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19657b1aec5b3b46cd3a9fad8a90d1ecbd9a5534efe79983ee013b74c669a1a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldpd/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99373, "scanner": "repobility-docker", "fingerprint": "99ca1e6a4454405222ee37b79a1b44d0990109eaac2e65aeccc3c3575110dea6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99ca1e6a4454405222ee37b79a1b44d0990109eaac2e65aeccc3c3575110dea6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldb-eval/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99371, "scanner": "repobility-docker", "fingerprint": "6a3c7b5ad898a85cd1120fc12658e28171a106fa1364759d7054a857af0df66e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a3c7b5ad898a85cd1120fc12658e28171a106fa1364759d7054a857af0df66e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llamacpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99368, "scanner": "repobility-docker", "fingerprint": "c19c9e2b4af46b6afa6a6400e4c9cab46c8c05b57c2fcea97dcbd1c9966c9d22", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c19c9e2b4af46b6afa6a6400e4c9cab46c8c05b57c2fcea97dcbd1c9966c9d22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llamacpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99367, "scanner": "repobility-docker", "fingerprint": "e48c536eacbe03e6e8325e244b03be3536fa040dc224c5e7e27a787d290faa17", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e48c536eacbe03e6e8325e244b03be3536fa040dc224c5e7e27a787d290faa17"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/litmuschaos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99366, "scanner": "repobility-docker", "fingerprint": "25833a5bf70354b2c86e85b30d4ff38e8f8266cf49cb21244a24a59e6f934e8d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25833a5bf70354b2c86e85b30d4ff38e8f8266cf49cb21244a24a59e6f934e8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/litmuschaos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99365, "scanner": "repobility-docker", "fingerprint": "5f41096b5e0ef965566a15dd620cb57982c18e800fad6e70092aba4e22c98bf7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f41096b5e0ef965566a15dd620cb57982c18e800fad6e70092aba4e22c98bf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99364, "scanner": "repobility-docker", "fingerprint": "45b5ba3db6e62472234c2e9a0e34649f499d36b5e4badb05b229e930362d4972", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45b5ba3db6e62472234c2e9a0e34649f499d36b5e4badb05b229e930362d4972"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99363, "scanner": "repobility-docker", "fingerprint": "22d133963cb53e14723ed752454ffc6505bcd54b789f342c97df9b2cf76d1e6d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22d133963cb53e14723ed752454ffc6505bcd54b789f342c97df9b2cf76d1e6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/linkerd2-proxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99362, "scanner": "repobility-docker", "fingerprint": "d2b4500d45fc51c9da4aa8132ac601496ce69068d36bb817708337a0fcfe4b28", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2b4500d45fc51c9da4aa8132ac601496ce69068d36bb817708337a0fcfe4b28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/linkerd2-proxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99361, "scanner": "repobility-docker", "fingerprint": "fae9025d1e658245d10b17cd2d191044cbe3354ac6e123cac177821326ea86c2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fae9025d1e658245d10b17cd2d191044cbe3354ac6e123cac177821326ea86c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/linkerd2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99360, "scanner": "repobility-docker", "fingerprint": "8dd69726f72254177495b641e7afe3af4f1c28d6883972b5cc60977024b9c43f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8dd69726f72254177495b641e7afe3af4f1c28d6883972b5cc60977024b9c43f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/linkerd2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99359, "scanner": "repobility-docker", "fingerprint": "3f0a06cbc3be100fc4d4cced3a9a7159cd11f7798fbf51b9c06c73929b32d009", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f0a06cbc3be100fc4d4cced3a9a7159cd11f7798fbf51b9c06c73929b32d009"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lima/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99358, "scanner": "repobility-docker", "fingerprint": "b21687d45f92778fbace40128d0bffc3eedc35fbb8a06621ff5f7c101ffde5da", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b21687d45f92778fbace40128d0bffc3eedc35fbb8a06621ff5f7c101ffde5da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lighttpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99355, "scanner": "repobility-docker", "fingerprint": "9d3fd295742a60012259ddada784cee0f9da99f3c3d9ef6f4a4e051dde4c867e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d3fd295742a60012259ddada784cee0f9da99f3c3d9ef6f4a4e051dde4c867e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lighttpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99354, "scanner": "repobility-docker", "fingerprint": "2e84d2e6940e59cfe363852379e26b3086074079e65df110e3ef9fd1bb8f9a39", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e84d2e6940e59cfe363852379e26b3086074079e65df110e3ef9fd1bb8f9a39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzmq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99351, "scanner": "repobility-docker", "fingerprint": "f78b078d752a22899a31b5d2ae52a3a12e70731f32d8787a189ead642c77f423", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f78b078d752a22899a31b5d2ae52a3a12e70731f32d8787a189ead642c77f423"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzmq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99350, "scanner": "repobility-docker", "fingerprint": "7dd8c907abfae7423ebd89113b48f620a3ed80c7b387737a53efc8991e8c1f1a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7dd8c907abfae7423ebd89113b48f620a3ed80c7b387737a53efc8991e8c1f1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99347, "scanner": "repobility-docker", "fingerprint": "2371a266d6013e2fd7ae5a3fc01fa8cfe7585aca7ced0e1d91ce303577809cfd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2371a266d6013e2fd7ae5a3fc01fa8cfe7585aca7ced0e1d91ce303577809cfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99346, "scanner": "repobility-docker", "fingerprint": "50f302d303bc421a90ebc1ad91fa2fad3a7a029fcb3e0ec993342d5c63197bde", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|50f302d303bc421a90ebc1ad91fa2fad3a7a029fcb3e0ec993342d5c63197bde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99343, "scanner": "repobility-docker", "fingerprint": "482c1c994112a42319421e6a14ff8966765788edd258ce3c638bc1f20f2a6f5c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|482c1c994112a42319421e6a14ff8966765788edd258ce3c638bc1f20f2a6f5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99342, "scanner": "repobility-docker", "fingerprint": "a00ff7b9268bf0118e757620d23d99bcfa8fa92bae4a4c23d47decb4e81e7985", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a00ff7b9268bf0118e757620d23d99bcfa8fa92bae4a4c23d47decb4e81e7985"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99339, "scanner": "repobility-docker", "fingerprint": "18af92097d0850fdb18daff8c140ead98eb499ddde8c33d1261eed5e8ce62570", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18af92097d0850fdb18daff8c140ead98eb499ddde8c33d1261eed5e8ce62570"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99338, "scanner": "repobility-docker", "fingerprint": "cf60c08c04f5dc3c8b1ef6c113e705b08d7f38ce5b732a2c4d045ebc8499002f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf60c08c04f5dc3c8b1ef6c113e705b08d7f38ce5b732a2c4d045ebc8499002f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyal/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99335, "scanner": "repobility-docker", "fingerprint": "8cde89aa5d98050be0e39dbc0d2697254986b820bec60067140abafce7d4e963", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cde89aa5d98050be0e39dbc0d2697254986b820bec60067140abafce7d4e963"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyal/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99334, "scanner": "repobility-docker", "fingerprint": "4d8bdf864de0150492db713672fb71b994de77c41aa7ed3078c7702aca001d51", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d8bdf864de0150492db713672fb71b994de77c41aa7ed3078c7702aca001d51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxslt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99331, "scanner": "repobility-docker", "fingerprint": "da240e94ec1b86e7efb5ae86a86253cccb07b32f84519da8edae6000212d1a22", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|da240e94ec1b86e7efb5ae86a86253cccb07b32f84519da8edae6000212d1a22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxslt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99330, "scanner": "repobility-docker", "fingerprint": "0c6bbcc86e14240212fdb4cb93c2c741dc38465328ad00d5c2f6ae472c17ce81", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c6bbcc86e14240212fdb4cb93c2c741dc38465328ad00d5c2f6ae472c17ce81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxml2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99327, "scanner": "repobility-docker", "fingerprint": "25f620e00689f1b2558d4ee5f94fb8aa31eb2209561fdf1d62848a5b28b5d243", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25f620e00689f1b2558d4ee5f94fb8aa31eb2209561fdf1d62848a5b28b5d243"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxml2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99326, "scanner": "repobility-docker", "fingerprint": "80f1ef300e1227b02f96bbb8b6478b8ab47dad4913b8e8d13bf4fa9d01e14e04", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|80f1ef300e1227b02f96bbb8b6478b8ab47dad4913b8e8d13bf4fa9d01e14e04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxlsxwriter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99322, "scanner": "repobility-docker", "fingerprint": "2053461ab2c986db21dfe13b908347bd9476c6230f69bbb71021eaa27b8f70af", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2053461ab2c986db21dfe13b908347bd9476c6230f69bbb71021eaa27b8f70af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxlsxwriter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99321, "scanner": "repobility-docker", "fingerprint": "3ea6b03c80bea2f8ab941f653fcd20e866159f6a3d7176ffeafe617069d2fb5d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ea6b03c80bea2f8ab941f653fcd20e866159f6a3d7176ffeafe617069d2fb5d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99318, "scanner": "repobility-docker", "fingerprint": "cf9c95899f993c4c577bc2eafad7c5820deccc5aec3e22f7163a5d5398f49108", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf9c95899f993c4c577bc2eafad7c5820deccc5aec3e22f7163a5d5398f49108"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99317, "scanner": "repobility-docker", "fingerprint": "eb617aaa055efa56d2485a94d5a15d0387a0d9db2edb3f32d3c40f62657e2393", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb617aaa055efa56d2485a94d5a15d0387a0d9db2edb3f32d3c40f62657e2393"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxaac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99316, "scanner": "repobility-docker", "fingerprint": "2d933138b597e5fa2518d55e5c104be0b19f46d9b598eddeb45940c78e347dfd", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d933138b597e5fa2518d55e5c104be0b19f46d9b598eddeb45940c78e347dfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxaac/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99313, "scanner": "repobility-docker", "fingerprint": "638b2b8825cc8d3bd1c8657a249509c564772802c5f643e587fc5c3fd7319773", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|638b2b8825cc8d3bd1c8657a249509c564772802c5f643e587fc5c3fd7319773"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxaac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99312, "scanner": "repobility-docker", "fingerprint": "7debf44391038fb485e366465f1488b45b08aaa1c589d62fd9038982e924e7ac", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7debf44391038fb485e366465f1488b45b08aaa1c589d62fd9038982e924e7ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebsockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99309, "scanner": "repobility-docker", "fingerprint": "ca238f58ccbfff228e634424df0b3f6ff1e66713d514b4aba0d3b5d672798566", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca238f58ccbfff228e634424df0b3f6ff1e66713d514b4aba0d3b5d672798566"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebsockets/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99308, "scanner": "repobility-docker", "fingerprint": "490574cae0111e6eeca73e6bfb25d06b3e4ba382169f2159e42bdff282870d50", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|490574cae0111e6eeca73e6bfb25d06b3e4ba382169f2159e42bdff282870d50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99307, "scanner": "repobility-docker", "fingerprint": "27a90b8bfb52abfd861acaa711b2f44a81f21ca3bb1c248d6a15aa7daede1db8", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|27a90b8bfb52abfd861acaa711b2f44a81f21ca3bb1c248d6a15aa7daede1db8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99304, "scanner": "repobility-docker", "fingerprint": "6dc96e8c86d27d74e109e5c9d4a4a9d2abc3c88687bb0bdfdff85d8ad425dec2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6dc96e8c86d27d74e109e5c9d4a4a9d2abc3c88687bb0bdfdff85d8ad425dec2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99303, "scanner": "repobility-docker", "fingerprint": "93f84451a2f7a2cc985b6d96b052a15f578789f67396878fa3d2160f143eedc3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93f84451a2f7a2cc985b6d96b052a15f578789f67396878fa3d2160f143eedc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99302, "scanner": "repobility-docker", "fingerprint": "dfececd44f3970581ecc31acec1901b3b123dd977cd2cce9fcd7cbbc6e9d5082", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dfececd44f3970581ecc31acec1901b3b123dd977cd2cce9fcd7cbbc6e9d5082"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99299, "scanner": "repobility-docker", "fingerprint": "29d983dc934f1d5434263b6f7c11281967993194d88a70e0098b844083ce38cc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|29d983dc934f1d5434263b6f7c11281967993194d88a70e0098b844083ce38cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99298, "scanner": "repobility-docker", "fingerprint": "44343ea30329918758563c32d899b2b9644d2b7a5b235fa0a243f99edce9f0d7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|44343ea30329918758563c32d899b2b9644d2b7a5b235fa0a243f99edce9f0d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvnc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99295, "scanner": "repobility-docker", "fingerprint": "05afdebfe21704967bedd652be9e53d89e8960f6a8455b7911aad35a9bb1bc3e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|05afdebfe21704967bedd652be9e53d89e8960f6a8455b7911aad35a9bb1bc3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvnc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99294, "scanner": "repobility-docker", "fingerprint": "b40023db229cd732d8d170a599f19a7c18f559b3b1194e9a8fbac212e76d34d4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b40023db229cd732d8d170a599f19a7c18f559b3b1194e9a8fbac212e76d34d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvips/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99291, "scanner": "repobility-docker", "fingerprint": "62223ac161562fa0dcdfc3bf28eea691503acb5513130d93f04b73511af35171", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62223ac161562fa0dcdfc3bf28eea691503acb5513130d93f04b73511af35171"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libusb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99288, "scanner": "repobility-docker", "fingerprint": "5bef887efff2c798c73eb6bf230e6395411b22c293c9ac5a3de712abcbd1ee4a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5bef887efff2c798c73eb6bf230e6395411b22c293c9ac5a3de712abcbd1ee4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libusb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99287, "scanner": "repobility-docker", "fingerprint": "760526925fd4d8b3666deab993fb3af26128a7509155ad12a8fb4aff5740e5a7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|760526925fd4d8b3666deab993fb3af26128a7509155ad12a8fb4aff5740e5a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libunwind/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99284, "scanner": "repobility-docker", "fingerprint": "4f459d8a516bf53be73e67f3e606eea76b6828dce4685d95eb01a9ee7574b18e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f459d8a516bf53be73e67f3e606eea76b6828dce4685d95eb01a9ee7574b18e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libunwind/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99283, "scanner": "repobility-docker", "fingerprint": "a4bb50629bf81bb46aad7ea08b7ce2b33f1d4b86332c9fd1a98261cc81f83a3f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a4bb50629bf81bb46aad7ea08b7ce2b33f1d4b86332c9fd1a98261cc81f83a3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libultrahdr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99280, "scanner": "repobility-docker", "fingerprint": "97a39a2d8159fda3681d4c6f32e2e756731d47ec7d1a29b615f54d351be2415d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|97a39a2d8159fda3681d4c6f32e2e756731d47ec7d1a29b615f54d351be2415d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libultrahdr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99279, "scanner": "repobility-docker", "fingerprint": "e22a73b9efd0a320e35b11b450a9b5991473a1f6bd5c5fa017b0b433bc112239", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e22a73b9efd0a320e35b11b450a9b5991473a1f6bd5c5fa017b0b433bc112239"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libucl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99276, "scanner": "repobility-docker", "fingerprint": "eaae2c3a46029cd9bc6133ae4cff287da54e5c918a86eb23259ea40be032f412", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eaae2c3a46029cd9bc6133ae4cff287da54e5c918a86eb23259ea40be032f412"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libucl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99275, "scanner": "repobility-docker", "fingerprint": "789f370be86b002a26ca201751c5982726ee8b354f914b9bd35bd6c8f68a399f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|789f370be86b002a26ca201751c5982726ee8b354f914b9bd35bd6c8f68a399f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtsm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99272, "scanner": "repobility-docker", "fingerprint": "f4b676e2ee56b6752f709b2b5f84c58829fbf821189724053b6b9acf5c85af37", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f4b676e2ee56b6752f709b2b5f84c58829fbf821189724053b6b9acf5c85af37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtsm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99271, "scanner": "repobility-docker", "fingerprint": "c685e72088734f252e98968ee1ad74836a0a6d0fbc6861646e09b18aa65049ea", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c685e72088734f252e98968ee1ad74836a0a6d0fbc6861646e09b18aa65049ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtpms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99268, "scanner": "repobility-docker", "fingerprint": "ba0420dc44b3d7d502485fabcad32abb0eb2a4b1112cd84937d7cf5dea0da5bc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba0420dc44b3d7d502485fabcad32abb0eb2a4b1112cd84937d7cf5dea0da5bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtpms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99267, "scanner": "repobility-docker", "fingerprint": "f41d40d0fdc87b7eab6612b3222c18537c55c4d93c756daf8a2601b1f5e5a18c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f41d40d0fdc87b7eab6612b3222c18537c55c4d93c756daf8a2601b1f5e5a18c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtorrent/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99264, "scanner": "repobility-docker", "fingerprint": "d6e6fea2ae5e88477bb6238feeff1de23a91ca28fd9fda50d9d17f577e224a76", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6e6fea2ae5e88477bb6238feeff1de23a91ca28fd9fda50d9d17f577e224a76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99263, "scanner": "repobility-docker", "fingerprint": "599a642aba02f23c60793563da497a9cc7f27cfa50ff2924873555ee62e87b64", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|599a642aba02f23c60793563da497a9cc7f27cfa50ff2924873555ee62e87b64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99262, "scanner": "repobility-docker", "fingerprint": "91b9231c61c2054277603302a302363fdf503f002e5c66272f97248a33aac7a4", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91b9231c61c2054277603302a302363fdf503f002e5c66272f97248a33aac7a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99259, "scanner": "repobility-docker", "fingerprint": "317dfe5f17374ad9c0921986b952a3366377380189dfbc17c87079bc5e471ccd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|317dfe5f17374ad9c0921986b952a3366377380189dfbc17c87079bc5e471ccd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99258, "scanner": "repobility-docker", "fingerprint": "70136d5f000d6040e72eed55ed9bddf403e19523a66f1e3d73ffea0696d18b5e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|70136d5f000d6040e72eed55ed9bddf403e19523a66f1e3d73ffea0696d18b5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtheora/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99255, "scanner": "repobility-docker", "fingerprint": "4c6f24616a99c503ea2b6964ffc1c1d02aa23092bb4e71cc9e7a71a19eb2d995", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c6f24616a99c503ea2b6964ffc1c1d02aa23092bb4e71cc9e7a71a19eb2d995"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtheora/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99254, "scanner": "repobility-docker", "fingerprint": "cb6f76ab782c9f5c851691052215619aabe0ce851b77c2f1ac123ab3991e802b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb6f76ab782c9f5c851691052215619aabe0ce851b77c2f1ac123ab3991e802b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libteken/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99251, "scanner": "repobility-docker", "fingerprint": "0cd1280c2137b5d971394fcb0cf5efc8d29b4ab02b615974effcaf3ada1de737", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cd1280c2137b5d971394fcb0cf5efc8d29b4ab02b615974effcaf3ada1de737"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libteken/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99250, "scanner": "repobility-docker", "fingerprint": "d41df8450c2c8cb3147f72c61dd74fc1a92d92d9f1687154a5ab77b4d8eed2c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d41df8450c2c8cb3147f72c61dd74fc1a92d92d9f1687154a5ab77b4d8eed2c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtasn1/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99247, "scanner": "repobility-docker", "fingerprint": "1c8f2815eccd4ed03a3781e8f34fe12c338b07e75d66a87f61e23c4a63f898d5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c8f2815eccd4ed03a3781e8f34fe12c338b07e75d66a87f61e23c4a63f898d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtasn1/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99246, "scanner": "repobility-docker", "fingerprint": "4143516d43d25297ecdb26965bdc47a4b3d85a53e049a5edc3fa83dff610a988", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4143516d43d25297ecdb26965bdc47a4b3d85a53e049a5edc3fa83dff610a988"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libstdcpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99245, "scanner": "repobility-docker", "fingerprint": "ba6c76aebacdb5b6e353060b3f44c3a2548a62b4e8b1ffc39d68214880e92b01", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba6c76aebacdb5b6e353060b3f44c3a2548a62b4e8b1ffc39d68214880e92b01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libstdcpp/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99242, "scanner": "repobility-docker", "fingerprint": "0794f6bc5f22b52c6ea4d8a51c5375d1b50ecac1bfa0c94d9dce496638ae9b76", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0794f6bc5f22b52c6ea4d8a51c5375d1b50ecac1bfa0c94d9dce496638ae9b76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libstdcpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99241, "scanner": "repobility-docker", "fingerprint": "2bf0232fb4a78552c23ebc6eb8e3ea226aa4c4d24eb539ffa57912d923fe3676", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2bf0232fb4a78552c23ebc6eb8e3ea226aa4c4d24eb539ffa57912d923fe3676"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99240, "scanner": "repobility-docker", "fingerprint": "1d716fc8e2f53cde13eaa530d2a726cc760a16c3b85b4a373e5666fd194d92cb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d716fc8e2f53cde13eaa530d2a726cc760a16c3b85b4a373e5666fd194d92cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99239, "scanner": "repobility-docker", "fingerprint": "22b726ccff0e317276babceb19052dd96ce10db9b9ae80e424e36b117d1f6d35", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22b726ccff0e317276babceb19052dd96ce10db9b9ae80e424e36b117d1f6d35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99236, "scanner": "repobility-docker", "fingerprint": "9eaa6f3fdca22238a6a04bca26a4545b048ea92e35667aa170ffc640a5462c6b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9eaa6f3fdca22238a6a04bca26a4545b048ea92e35667aa170ffc640a5462c6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99235, "scanner": "repobility-docker", "fingerprint": "c8bb24003776f7679a9d90eed2c97f113e46c6be4e13b9cf3781d49d9a6a0e33", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8bb24003776f7679a9d90eed2c97f113e46c6be4e13b9cf3781d49d9a6a0e33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsrtp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99232, "scanner": "repobility-docker", "fingerprint": "1b5fc2f3e7ed7598b01ea366c940c7579e9d42801a6b9cfcc80cffe99a75d1aa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b5fc2f3e7ed7598b01ea366c940c7579e9d42801a6b9cfcc80cffe99a75d1aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsrtp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99231, "scanner": "repobility-docker", "fingerprint": "53b08e83e919c14b366f5b88ec161bd0874bf3182101eeab91cbd54bdb1228aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53b08e83e919c14b366f5b88ec161bd0874bf3182101eeab91cbd54bdb1228aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99228, "scanner": "repobility-docker", "fingerprint": "b8f654ba410687d9ae1ca6d2c96eb3d747eec9342e4160055f84825d79159f0a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8f654ba410687d9ae1ca6d2c96eb3d747eec9342e4160055f84825d79159f0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99227, "scanner": "repobility-docker", "fingerprint": "b59fda4fd14006f702978bd8ff2928d5dee51dce36603c8afeff9461cd9bb906", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b59fda4fd14006f702978bd8ff2928d5dee51dce36603c8afeff9461cd9bb906"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspectre/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99224, "scanner": "repobility-docker", "fingerprint": "5c0e104a135340aa6f659f027c756252ce232ed2bf54fab47750a497423629ac", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c0e104a135340aa6f659f027c756252ce232ed2bf54fab47750a497423629ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspectre/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99223, "scanner": "repobility-docker", "fingerprint": "f48a5ec5c8071ab0dc2fc35c7fc99804b6394cba22f85a00f265b6b50c2ff89a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f48a5ec5c8071ab0dc2fc35c7fc99804b6394cba22f85a00f265b6b50c2ff89a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspdm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99220, "scanner": "repobility-docker", "fingerprint": "acf7cfabe73f49174376faf7d117557b98e72e0f20a726ed988bff3612e22557", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|acf7cfabe73f49174376faf7d117557b98e72e0f20a726ed988bff3612e22557"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspdm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99219, "scanner": "repobility-docker", "fingerprint": "d5c74bcc32ff226992d517ffaab6060c473f65e4bb629f4acacdf914ef0d009f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5c74bcc32ff226992d517ffaab6060c473f65e4bb629f4acacdf914ef0d009f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsoup/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99216, "scanner": "repobility-docker", "fingerprint": "576b77cd05becf0bb6e132c8fb6642e9509af24ea9079cd5668a3b6c479898ea", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|576b77cd05becf0bb6e132c8fb6642e9509af24ea9079cd5668a3b6c479898ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsodium/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99213, "scanner": "repobility-docker", "fingerprint": "a44abad8177208ba8592d389c33cdc77c672abdcd6949e516a0908025abe2d84", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a44abad8177208ba8592d389c33cdc77c672abdcd6949e516a0908025abe2d84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsodium/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99212, "scanner": "repobility-docker", "fingerprint": "0dcf2e7e6c64f6f3f3ccc35f8a416c12f221f272f3d392cc1dd5c3674ec8afed", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0dcf2e7e6c64f6f3f3ccc35f8a416c12f221f272f3d392cc1dd5c3674ec8afed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsndfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99211, "scanner": "repobility-docker", "fingerprint": "b227734529a1d7ca24b679f6199bd7c28bf0377ab451ea376340e1eaa2d38a32", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b227734529a1d7ca24b679f6199bd7c28bf0377ab451ea376340e1eaa2d38a32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsndfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99210, "scanner": "repobility-docker", "fingerprint": "b332624cbcff683ca2315e8e58180b0caf184cab74a9ac9c051d6a98c220f802", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b332624cbcff683ca2315e8e58180b0caf184cab74a9ac9c051d6a98c220f802"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsass/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99207, "scanner": "repobility-docker", "fingerprint": "1ad9a1158149225fc0033bc8b4c1464c612b26001d469f3853a61b6d14615cd3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ad9a1158149225fc0033bc8b4c1464c612b26001d469f3853a61b6d14615cd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsass/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99206, "scanner": "repobility-docker", "fingerprint": "862ef4cfe55631eae825baa2c68698aaf05476934f883f044e1933a961074891", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|862ef4cfe55631eae825baa2c68698aaf05476934f883f044e1933a961074891"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librsvg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99205, "scanner": "repobility-docker", "fingerprint": "28c47735cbb643f155beb08842505c6146a9fb19cb4a05e77e0b39a3bf7a7248", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28c47735cbb643f155beb08842505c6146a9fb19cb4a05e77e0b39a3bf7a7248"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librsvg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99204, "scanner": "repobility-docker", "fingerprint": "cee48c4dd213d8591ef93e3c3e80df89d4b873ef92616e4d58406d37312f0cb7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cee48c4dd213d8591ef93e3c3e80df89d4b873ef92616e4d58406d37312f0cb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libressl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99201, "scanner": "repobility-docker", "fingerprint": "7c6535b35fc74c1c4b756870242f4811a860d565f1f761fecd07bcfbd0925ab8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c6535b35fc74c1c4b756870242f4811a860d565f1f761fecd07bcfbd0925ab8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99196, "scanner": "repobility-docker", "fingerprint": "a0a724a5d2da30a57efe430fe632f6c465456486fa88b377d86086b28e050ea6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a0a724a5d2da30a57efe430fe632f6c465456486fa88b377d86086b28e050ea6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99195, "scanner": "repobility-docker", "fingerprint": "1c8ce725b347ced939b55690d4efcb022c0344c7ddeb3bbe4d23e655189bfd85", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c8ce725b347ced939b55690d4efcb022c0344c7ddeb3bbe4d23e655189bfd85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libredwg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99192, "scanner": "repobility-docker", "fingerprint": "63131ee5f4ff41ff3c158bff2cca466f62ccba88b85d6b3eb5465f991dfb035b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63131ee5f4ff41ff3c158bff2cca466f62ccba88b85d6b3eb5465f991dfb035b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libredwg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99191, "scanner": "repobility-docker", "fingerprint": "b416fb6a7988e69f1a4b9836d305d59b169da8ecc8fb641ebabc966af667c7b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b416fb6a7988e69f1a4b9836d305d59b169da8ecc8fb641ebabc966af667c7b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librdkafka/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99188, "scanner": "repobility-docker", "fingerprint": "9acf58fd36e47818a40014e7cfd943aeebc1c4742b89b7b7e100f30cb13e7cbb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9acf58fd36e47818a40014e7cfd943aeebc1c4742b89b7b7e100f30cb13e7cbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librdkafka/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99187, "scanner": "repobility-docker", "fingerprint": "32f51a2840d5307acfae9b4ed65dca680307c06d37bc490724fad94d6919befc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|32f51a2840d5307acfae9b4ed65dca680307c06d37bc490724fad94d6919befc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librawspeed/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99184, "scanner": "repobility-docker", "fingerprint": "5a7ebc3e6907f7310fc1534b8213c221ff1eb736067abf5d6215b134d6938880", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a7ebc3e6907f7310fc1534b8213c221ff1eb736067abf5d6215b134d6938880"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librawspeed/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99183, "scanner": "repobility-docker", "fingerprint": "c91973f48842a71607c84b09391400cdb8402363d1783c45f17fb7047bce4e54", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c91973f48842a71607c84b09391400cdb8402363d1783c45f17fb7047bce4e54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99182, "scanner": "repobility-docker", "fingerprint": "ba92dbbceca0679dc54daec5990b5f8c67193410763a98a0028042b5ec8d51e3", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba92dbbceca0679dc54daec5990b5f8c67193410763a98a0028042b5ec8d51e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99181, "scanner": "repobility-docker", "fingerprint": "7478943a7c1f87c77e9a848b9b7ffabf20693cf80f132bc7eb2686567035aac7", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7478943a7c1f87c77e9a848b9b7ffabf20693cf80f132bc7eb2686567035aac7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99180, "scanner": "repobility-docker", "fingerprint": "137a46213bb1687b7148cdd0a581a2c25ea535c92aeb7c26890ed3c9d5277431", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|137a46213bb1687b7148cdd0a581a2c25ea535c92aeb7c26890ed3c9d5277431"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99177, "scanner": "repobility-docker", "fingerprint": "7ee930667ecc271a1d1d78b6c03b718a4bdd324aa011fe688fbfd7a875101b6e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ee930667ecc271a1d1d78b6c03b718a4bdd324aa011fe688fbfd7a875101b6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99176, "scanner": "repobility-docker", "fingerprint": "3e9733edeee9b84d2aab0f07b3c8ce3a360f083164bc414521da9562fef7623e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e9733edeee9b84d2aab0f07b3c8ce3a360f083164bc414521da9562fef7623e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libra/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99173, "scanner": "repobility-docker", "fingerprint": "a19fadade2e63a29091358c4dd6573a171bf2f589665400e908b1ddeedc90fe8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a19fadade2e63a29091358c4dd6573a171bf2f589665400e908b1ddeedc90fe8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpsl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99170, "scanner": "repobility-docker", "fingerprint": "c1f6d9afe6f20fb26df9e86623071e1c92e6661db2e00b26924c566186179111", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c1f6d9afe6f20fb26df9e86623071e1c92e6661db2e00b26924c566186179111"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpsl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99169, "scanner": "repobility-docker", "fingerprint": "f3e85a2631a862e6101b79ebc58412509b9eb81ca24e466f04d7e9c789f764c3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3e85a2631a862e6101b79ebc58412509b9eb81ca24e466f04d7e9c789f764c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libprotobuf-mutator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99166, "scanner": "repobility-docker", "fingerprint": "b22ee5e6553331b145139bd4cb264c915384f2471f21c1792b2c34d3b9361395", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b22ee5e6553331b145139bd4cb264c915384f2471f21c1792b2c34d3b9361395"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng-proto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99163, "scanner": "repobility-docker", "fingerprint": "5af224dd326e2c28355999ea6c16b3dbdd72219d14de8cc0c5a916a4aa9e9ba9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5af224dd326e2c28355999ea6c16b3dbdd72219d14de8cc0c5a916a4aa9e9ba9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng-proto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99162, "scanner": "repobility-docker", "fingerprint": "377531f06069def9beeb4efed87131329a946864c3eb6172429ccf7489171fb2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|377531f06069def9beeb4efed87131329a946864c3eb6172429ccf7489171fb2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99159, "scanner": "repobility-docker", "fingerprint": "e4c95b252d86099ea19ca9206a11f81e32b1529e254862bcfe2e2f53a4422b2b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4c95b252d86099ea19ca9206a11f81e32b1529e254862bcfe2e2f53a4422b2b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99158, "scanner": "repobility-docker", "fingerprint": "6cd7768ef689bea390f1654df146933b5d0190e6bcbc61971e7ac17ea0cf2ca2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6cd7768ef689bea390f1654df146933b5d0190e6bcbc61971e7ac17ea0cf2ca2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libplist/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99155, "scanner": "repobility-docker", "fingerprint": "f1e9cc25f5a8d21a16331c50b1f590315fa1a2466e94b89491f1b258c9996cb8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1e9cc25f5a8d21a16331c50b1f590315fa1a2466e94b89491f1b258c9996cb8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libplist/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99154, "scanner": "repobility-docker", "fingerprint": "76395b33e111e929e00649fd91431752997e1fd3a36341ddeefe438c14234b8d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76395b33e111e929e00649fd91431752997e1fd3a36341ddeefe438c14234b8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libphonenumber/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99151, "scanner": "repobility-docker", "fingerprint": "bdfa77f4a9ce6ec368bc0ef608b87d303d709429539e48e989f68afd3f28c152", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bdfa77f4a9ce6ec368bc0ef608b87d303d709429539e48e989f68afd3f28c152"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libphonenumber/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99150, "scanner": "repobility-docker", "fingerprint": "2cc863c15d6907991f0fd6e0ee97bd93fa42a43bf04ffda61cc9b3ac0de4af7a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2cc863c15d6907991f0fd6e0ee97bd93fa42a43bf04ffda61cc9b3ac0de4af7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpg_query/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99149, "scanner": "repobility-docker", "fingerprint": "9c06952dad2e92596f0dc681e533b32120a74f9411e53d2b69b7094dbf33897a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c06952dad2e92596f0dc681e533b32120a74f9411e53d2b69b7094dbf33897a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpg_query/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99148, "scanner": "repobility-docker", "fingerprint": "dd98685b80adebbec2dd90b986177d50fac52ce61595223414c1be3f467f83aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd98685b80adebbec2dd90b986177d50fac52ce61595223414c1be3f467f83aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpcap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99145, "scanner": "repobility-docker", "fingerprint": "7b6b213c3993d57b9bcb2dc2c2e13c16e4d0c5e298948c11aee0a9bbd39bc118", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b6b213c3993d57b9bcb2dc2c2e13c16e4d0c5e298948c11aee0a9bbd39bc118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpcap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99144, "scanner": "repobility-docker", "fingerprint": "d7f6260c4f71530d12b35dabf62a0b507380fd534462ba7ea0a29fb5a6bba344", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7f6260c4f71530d12b35dabf62a0b507380fd534462ba7ea0a29fb5a6bba344"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liboqs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99141, "scanner": "repobility-docker", "fingerprint": "f9f533e2598ef35527bbfa891fcae32b15cb809cafa3f09db5b259f687ccd80b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f9f533e2598ef35527bbfa891fcae32b15cb809cafa3f09db5b259f687ccd80b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmpeg2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99140, "scanner": "repobility-docker", "fingerprint": "45557535e31be3ddbf2b95f26f1b32ba7d9e8e1122fbb76f48b2908a11d170c5", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45557535e31be3ddbf2b95f26f1b32ba7d9e8e1122fbb76f48b2908a11d170c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmpeg2/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99137, "scanner": "repobility-docker", "fingerprint": "215b7e1812c633042496d87b274a24bd7bd86bd4e0011f237abb52e59fd7cfda", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|215b7e1812c633042496d87b274a24bd7bd86bd4e0011f237abb52e59fd7cfda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmpeg2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99136, "scanner": "repobility-docker", "fingerprint": "a6ff80c971ce0a17f066872552773c0ad7b9f3f47b7d80acaba9b8a18f864c90", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6ff80c971ce0a17f066872552773c0ad7b9f3f47b7d80acaba9b8a18f864c90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmodbus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99133, "scanner": "repobility-docker", "fingerprint": "0e666b4854df8bd5e36bbe9021b668ea3d400fe15286158de24044081938a1b9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e666b4854df8bd5e36bbe9021b668ea3d400fe15286158de24044081938a1b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmodbus/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99132, "scanner": "repobility-docker", "fingerprint": "1e07fe1a00725fcf5152a07910ea6c1f65d3fed9c88fc12859c20d00f8e7b051", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e07fe1a00725fcf5152a07910ea6c1f65d3fed9c88fc12859c20d00f8e7b051"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmicrohttpd2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99129, "scanner": "repobility-docker", "fingerprint": "4bbb9ab4ffe8e0c77545970e46697e510108e07191f5f896ff47e1e22c615396", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4bbb9ab4ffe8e0c77545970e46697e510108e07191f5f896ff47e1e22c615396"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liblouis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99126, "scanner": "repobility-docker", "fingerprint": "4596bd3f6d60e58330b3111b8a3cadb7da784df62c0271613d1c725dba998468", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4596bd3f6d60e58330b3111b8a3cadb7da784df62c0271613d1c725dba998468"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liblouis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99125, "scanner": "repobility-docker", "fingerprint": "2d29be7657fcb56a42eb3f8f30f673f8da15c9bfd9f50fe03bac9a8bb74c5d47", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d29be7657fcb56a42eb3f8f30f673f8da15c9bfd9f50fe03bac9a8bb74c5d47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libldac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99121, "scanner": "repobility-docker", "fingerprint": "22caadd84cd1160725e04a117261477583f8467dc1e5ef13a4c615218b1e39ef", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22caadd84cd1160725e04a117261477583f8467dc1e5ef13a4c615218b1e39ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libldac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99120, "scanner": "repobility-docker", "fingerprint": "e4fdc3d08f9a02348181fe9d4d5a33c012c84650f300bee9100f8818b0971ad8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4fdc3d08f9a02348181fe9d4d5a33c012c84650f300bee9100f8818b0971ad8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjxl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99117, "scanner": "repobility-docker", "fingerprint": "a63ef2720a37eb6e30f27636b5384982030ae3f62dfcbaead731d39c7e00cb55", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a63ef2720a37eb6e30f27636b5384982030ae3f62dfcbaead731d39c7e00cb55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjxl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99116, "scanner": "repobility-docker", "fingerprint": "03f853dd61368877bda76aa2241c8ac62b1dffd890015b899e6aef03d1351ee8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03f853dd61368877bda76aa2241c8ac62b1dffd890015b899e6aef03d1351ee8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjpeg-turbo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99113, "scanner": "repobility-docker", "fingerprint": "d460ae45b609543ca38bbfc4e5a9277147fca6b7d2bcfdaecdd142fdcb6ed112", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d460ae45b609543ca38bbfc4e5a9277147fca6b7d2bcfdaecdd142fdcb6ed112"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjpeg-turbo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99112, "scanner": "repobility-docker", "fingerprint": "fcf58866f12df54a6c70447999d8c4c6b7b7d01e4a78c075e9062642526fcb4e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fcf58866f12df54a6c70447999d8c4c6b7b7d01e4a78c075e9062642526fcb4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libigl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99109, "scanner": "repobility-docker", "fingerprint": "ff286f81d6318d5e6660e377262e7f0e24b1f9867b7f2498cc33e4a30d2fcf5e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff286f81d6318d5e6660e377262e7f0e24b1f9867b7f2498cc33e4a30d2fcf5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libigl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99108, "scanner": "repobility-docker", "fingerprint": "17872fb85e860b29c1dc5c95c2e17873e267842d83722cf115143461fa2f513d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17872fb85e860b29c1dc5c95c2e17873e267842d83722cf115143461fa2f513d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libiec61850/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99107, "scanner": "repobility-docker", "fingerprint": "67dbed34376c239e39bce1ebd2db1f0394dfe1f6e5821261dd212e1453b0bb98", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67dbed34376c239e39bce1ebd2db1f0394dfe1f6e5821261dd212e1453b0bb98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libiec61850/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99106, "scanner": "repobility-docker", "fingerprint": "4bc25a0398e17fcf0415436f537af34d6339c26a4f4877489816a03a62622363", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4bc25a0398e17fcf0415436f537af34d6339c26a4f4877489816a03a62622363"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99103, "scanner": "repobility-docker", "fingerprint": "f25132f307a13c22d64303b6863bdbf61a4d0e34e6e51074cc04e2aa5638f6da", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f25132f307a13c22d64303b6863bdbf61a4d0e34e6e51074cc04e2aa5638f6da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99102, "scanner": "repobility-docker", "fingerprint": "e0a41984d68bf2c2cecc31c22124f0975aecbcedb0d52e87f572cc0f3c56ada4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0a41984d68bf2c2cecc31c22124f0975aecbcedb0d52e87f572cc0f3c56ada4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99099, "scanner": "repobility-docker", "fingerprint": "f6cc89fe265233f0560afbc0bd710e877c236e139e219193956d3e2281d89f2c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6cc89fe265233f0560afbc0bd710e877c236e139e219193956d3e2281d89f2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99098, "scanner": "repobility-docker", "fingerprint": "48bc9d65abbc5e4afeeb7af1e3e63734ade357c170df9ab41add3b01cb0ec438", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48bc9d65abbc5e4afeeb7af1e3e63734ade357c170df9ab41add3b01cb0ec438"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libical/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99096, "scanner": "repobility-docker", "fingerprint": "4177a0cd2986b411831894c333452daca861e4a99f8c90fdfd03afecfeb2eb28", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4177a0cd2986b411831894c333452daca861e4a99f8c90fdfd03afecfeb2eb28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libical/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99095, "scanner": "repobility-docker", "fingerprint": "9c64d9afae19509b9cf26a0c7a43fe6df1033ce0be88c1e87817c1befb64d926", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c64d9afae19509b9cf26a0c7a43fe6df1033ce0be88c1e87817c1befb64d926"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhtp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99092, "scanner": "repobility-docker", "fingerprint": "a255bff2cbcecf4fac0b5cd27b9ad349884e2de483b0e388ea6d9589c64baddd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a255bff2cbcecf4fac0b5cd27b9ad349884e2de483b0e388ea6d9589c64baddd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhtp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99091, "scanner": "repobility-docker", "fingerprint": "8b81a1e4531e6deba33000a16ca960c7c3abad00feafba53a178f2aced840290", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b81a1e4531e6deba33000a16ca960c7c3abad00feafba53a178f2aced840290"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhevc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99090, "scanner": "repobility-docker", "fingerprint": "135bf5e74544b44c698e40dd3eb3d5f25d51e38c9669a8e6e141d772a7f7e9d5", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|135bf5e74544b44c698e40dd3eb3d5f25d51e38c9669a8e6e141d772a7f7e9d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhevc/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99087, "scanner": "repobility-docker", "fingerprint": "ed2e148959c31b6f6ab303f454be178a2a7f37cd75278ad3eb7d899765f6dc73", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed2e148959c31b6f6ab303f454be178a2a7f37cd75278ad3eb7d899765f6dc73"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhevc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99086, "scanner": "repobility-docker", "fingerprint": "deba12412f7e332a271f3bf8fe3c9faac82957ebe67ff1050fcecec15d697ca5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|deba12412f7e332a271f3bf8fe3c9faac82957ebe67ff1050fcecec15d697ca5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libheif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99085, "scanner": "repobility-docker", "fingerprint": "b00e38b60c49db5d5336c057ab5cae43454720afc270b69f8ae3538debcca95d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b00e38b60c49db5d5336c057ab5cae43454720afc270b69f8ae3538debcca95d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libheif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99084, "scanner": "repobility-docker", "fingerprint": "d1887a256e5c04ef2b1bc4bbc8c6f00b016182dc02ef87c97fb34c578719bd0f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d1887a256e5c04ef2b1bc4bbc8c6f00b016182dc02ef87c97fb34c578719bd0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgit2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99081, "scanner": "repobility-docker", "fingerprint": "031cab739dab305825f4f1ffe31c61bfbcffa29dc9b1c300d2c1d99382c37e1d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|031cab739dab305825f4f1ffe31c61bfbcffa29dc9b1c300d2c1d99382c37e1d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99080, "scanner": "repobility-docker", "fingerprint": "8d2b2ba772e674786563e331e8ae649f71e9d53fedac6f17c873688677de80ba", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d2b2ba772e674786563e331e8ae649f71e9d53fedac6f17c873688677de80ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99077, "scanner": "repobility-docker", "fingerprint": "c0414a36c1e203a1d1a2649c146cda096f72b93b7187cd37a3979287504adf4f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c0414a36c1e203a1d1a2649c146cda096f72b93b7187cd37a3979287504adf4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99076, "scanner": "repobility-docker", "fingerprint": "76c55d3ec72b23f09bb4a45a59fcd0455ca832e0d26dcecdb04caf209ca9e76e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76c55d3ec72b23f09bb4a45a59fcd0455ca832e0d26dcecdb04caf209ca9e76e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfuse/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99072, "scanner": "repobility-docker", "fingerprint": "7b1d4915d41d7969b117cddfba3882ad17a47ef85313820358b6fb970ca311e2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b1d4915d41d7969b117cddfba3882ad17a47ef85313820358b6fb970ca311e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfuse/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99071, "scanner": "repobility-docker", "fingerprint": "1614ad27d0dd2c90b8d50e6e3f1901f853d48276d1869e8866f27165d1d18887", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1614ad27d0dd2c90b8d50e6e3f1901f853d48276d1869e8866f27165d1d18887"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99070, "scanner": "repobility-docker", "fingerprint": "d2f818de373ae3bb2304080030727ddf02ff3aad8d99608fca0fae8aa35c8294", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2f818de373ae3bb2304080030727ddf02ff3aad8d99608fca0fae8aa35c8294"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99066, "scanner": "repobility-docker", "fingerprint": "fb1ca29b32c92628637d11bc2d832e840c760c575ff6abe01c8b3c57a169b3f5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb1ca29b32c92628637d11bc2d832e840c760c575ff6abe01c8b3c57a169b3f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99065, "scanner": "repobility-docker", "fingerprint": "289705148433177e1a0cb43b362936d5e1f8b038dcefdfcca703e1b10f3ba1b3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|289705148433177e1a0cb43b362936d5e1f8b038dcefdfcca703e1b10f3ba1b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfdk-aac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99064, "scanner": "repobility-docker", "fingerprint": "cd6fae8793cdeff7f5138b2b62ebd959efb9ecc26635aec0aa758460f5c72c16", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd6fae8793cdeff7f5138b2b62ebd959efb9ecc26635aec0aa758460f5c72c16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfdk-aac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99063, "scanner": "repobility-docker", "fingerprint": "7f180fee903639df5b9b339cd0ac8abfbf5e0f03547eaf564eb66891f063bb36", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f180fee903639df5b9b339cd0ac8abfbf5e0f03547eaf564eb66891f063bb36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libexif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99060, "scanner": "repobility-docker", "fingerprint": "0217d1e20e96a45d038ddf927c9ca91ead1666457196d5e69c9ca3f7ae8c5a99", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0217d1e20e96a45d038ddf927c9ca91ead1666457196d5e69c9ca3f7ae8c5a99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libexif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99059, "scanner": "repobility-docker", "fingerprint": "c72d86a04f6c568af73bf397cd36fc19dfcc2b2bafd90a23696d6b736935dc72", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c72d86a04f6c568af73bf397cd36fc19dfcc2b2bafd90a23696d6b736935dc72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libevent/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99056, "scanner": "repobility-docker", "fingerprint": "a673db5fc9a3d15a407594d7301e0119e50e4d8e40333eeb1a965f2c5bf24dc2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a673db5fc9a3d15a407594d7301e0119e50e4d8e40333eeb1a965f2c5bf24dc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libevent/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99055, "scanner": "repobility-docker", "fingerprint": "3333cbabe6e268724e55ff5a854aa58cf1eb936088cb99bada4a6286ec18a5cb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3333cbabe6e268724e55ff5a854aa58cf1eb936088cb99bada4a6286ec18a5cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libecc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99052, "scanner": "repobility-docker", "fingerprint": "977dd11dcb55ce56a34862006ea8aaaf768a2e9a9fd84a188b55d0296ea4186f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|977dd11dcb55ce56a34862006ea8aaaf768a2e9a9fd84a188b55d0296ea4186f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libdwarf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99050, "scanner": "repobility-docker", "fingerprint": "fba86b60ee25ce124053fb668c3a6e460f2593e44a1521e0eea261e2887338f1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fba86b60ee25ce124053fb668c3a6e460f2593e44a1521e0eea261e2887338f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libdwarf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99049, "scanner": "repobility-docker", "fingerprint": "b63f262aef170f39f2de2af8d4cc4f934bad9425cef1143c87c11f6a8f805c22", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b63f262aef170f39f2de2af8d4cc4f934bad9425cef1143c87c11f6a8f805c22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcups/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99046, "scanner": "repobility-docker", "fingerprint": "747365b08df71200d5bf4e9c242981fab5bdf776b0009ecb9616182008cea879", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|747365b08df71200d5bf4e9c242981fab5bdf776b0009ecb9616182008cea879"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcups/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99045, "scanner": "repobility-docker", "fingerprint": "708ea02d7ff36775ac6451247afd733338844dd7c4ff92e6014f8912e2f164e1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|708ea02d7ff36775ac6451247afd733338844dd7c4ff92e6014f8912e2f164e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcue/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99042, "scanner": "repobility-docker", "fingerprint": "a0d1785eee2444358a0dd5407571d6c4219d21f469f462252e585bd03115ae2d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a0d1785eee2444358a0dd5407571d6c4219d21f469f462252e585bd03115ae2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcue/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99041, "scanner": "repobility-docker", "fingerprint": "305988971cf7b1b87f55d3a85c4890b14a4d8334ef6e953bbe83f63b135483eb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|305988971cf7b1b87f55d3a85c4890b14a4d8334ef6e953bbe83f63b135483eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcst/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99038, "scanner": "repobility-docker", "fingerprint": "f8f577be6fb599176fc7fbf3f2259dd60349c3178a37ccd34ca3ae4a51b91d60", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f8f577be6fb599176fc7fbf3f2259dd60349c3178a37ccd34ca3ae4a51b91d60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcst/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99037, "scanner": "repobility-docker", "fingerprint": "0a8c4a4cd5bf49bf8ece3c48be0e0410dd02051155233b913058632fa0bb9f40", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a8c4a4cd5bf49bf8ece3c48be0e0410dd02051155233b913058632fa0bb9f40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libconfig/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99034, "scanner": "repobility-docker", "fingerprint": "d115061acdcf20c6654803ebcda0710d1b1e54df3f71543c19572dd4629565d0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d115061acdcf20c6654803ebcda0710d1b1e54df3f71543c19572dd4629565d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libconfig/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99033, "scanner": "repobility-docker", "fingerprint": "b06b8ff77aeb29672966abc5a11cf19a02a29973f1ce80d247b465939b1571be", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b06b8ff77aeb29672966abc5a11cf19a02a29973f1ce80d247b465939b1571be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcoap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99030, "scanner": "repobility-docker", "fingerprint": "966437cc8e682839cc32ea9d8c17e1b2c0c3125d0476f6aab76c7bf6c60ac064", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|966437cc8e682839cc32ea9d8c17e1b2c0c3125d0476f6aab76c7bf6c60ac064"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcoap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99029, "scanner": "repobility-docker", "fingerprint": "5d06735a13b3c946f0bc16419f41ea37a0e39507c3237c7e5cdc968831a70e20", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d06735a13b3c946f0bc16419f41ea37a0e39507c3237c7e5cdc968831a70e20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcbor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99026, "scanner": "repobility-docker", "fingerprint": "96fef7e30d6544f4bd1895e679955ed854c46e0cfdd211ee2134875f52994901", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96fef7e30d6544f4bd1895e679955ed854c46e0cfdd211ee2134875f52994901"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcbor/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99025, "scanner": "repobility-docker", "fingerprint": "8f275442f82dff553d9e16bde070d70ff6cb06644cba5f511c033ed3b0712cb1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f275442f82dff553d9e16bde070d70ff6cb06644cba5f511c033ed3b0712cb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcacard/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99022, "scanner": "repobility-docker", "fingerprint": "ef591373c04c1d2cf9c817bbc5c42166d8d0cc66d00396097a35529924114779", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef591373c04c1d2cf9c817bbc5c42166d8d0cc66d00396097a35529924114779"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcacard/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99021, "scanner": "repobility-docker", "fingerprint": "b1718e60558cba3f7aa36fee65387c6d9ad9542b4687ab11a83ae551597eb374", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b1718e60558cba3f7aa36fee65387c6d9ad9542b4687ab11a83ae551597eb374"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libbpf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99019, "scanner": "repobility-docker", "fingerprint": "e80ae4ea89689a6d977f01208b3a6f460213d0de29cf2b452b69f38251d857fb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e80ae4ea89689a6d977f01208b3a6f460213d0de29cf2b452b69f38251d857fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libbpf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99018, "scanner": "repobility-docker", "fingerprint": "e21c55b0310ae8764683e1f73388aef4404d1acc5845be6dbebafd561b4b95da", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e21c55b0310ae8764683e1f73388aef4404d1acc5845be6dbebafd561b4b95da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99016, "scanner": "repobility-docker", "fingerprint": "7de365ec28fd5d8d30bd97d443de13f17e60cb2db7331ac4744d7e3e618c6f95", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7de365ec28fd5d8d30bd97d443de13f17e60cb2db7331ac4744d7e3e618c6f95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99015, "scanner": "repobility-docker", "fingerprint": "84f11858e2d9605aeea3579b68a4123c1944d30eae3286396b78627acf4589a3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84f11858e2d9605aeea3579b68a4123c1944d30eae3286396b78627acf4589a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99014, "scanner": "repobility-docker", "fingerprint": "5e9312610191aacd8bcdf40358c1c4ed53e4b72c513108de2734053f0fcc20c8", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e9312610191aacd8bcdf40358c1c4ed53e4b72c513108de2734053f0fcc20c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavc/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99011, "scanner": "repobility-docker", "fingerprint": "67948f9136a8952e3c1accd5186595d80b5b9f98a38c4ba5e8d65508eaa21e4e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67948f9136a8952e3c1accd5186595d80b5b9f98a38c4ba5e8d65508eaa21e4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99010, "scanner": "repobility-docker", "fingerprint": "3a68a1c8e72f7639c7ca21a8af4d1b79e0bb972083de25d277a7e0182f1859f5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a68a1c8e72f7639c7ca21a8af4d1b79e0bb972083de25d277a7e0182f1859f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libass/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99007, "scanner": "repobility-docker", "fingerprint": "4360eefd10f75426415a37fe16a914f1b963d2ca5a94a37c55bdc075e73ddf84", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4360eefd10f75426415a37fe16a914f1b963d2ca5a94a37c55bdc075e73ddf84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libass/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99006, "scanner": "repobility-docker", "fingerprint": "d3ba3630172fdb3a065e0f85d8dc54edcb59779334f72dc45322a8575d0c1dc7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3ba3630172fdb3a065e0f85d8dc54edcb59779334f72dc45322a8575d0c1dc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libarchive/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 99002, "scanner": "repobility-docker", "fingerprint": "ae789e930239aa84e74209dca0a8072ec236fb83bb664aa0e56935e7279f273b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae789e930239aa84e74209dca0a8072ec236fb83bb664aa0e56935e7279f273b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libarchive/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 99001, "scanner": "repobility-docker", "fingerprint": "b3b897de83fcc7f5c66fbbf54ebb64bb5474134241c8538ba6f2dc22780954ea", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3b897de83fcc7f5c66fbbf54ebb64bb5474134241c8538ba6f2dc22780954ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 99000, "scanner": "repobility-docker", "fingerprint": "fe5df2e9935ea41e46ce27cda0d109c81d2f129a3a3f91521982154b11e229f0", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fe5df2e9935ea41e46ce27cda0d109c81d2f129a3a3f91521982154b11e229f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98997, "scanner": "repobility-docker", "fingerprint": "9cfc649eb5abea03d91a876f18f8b8d66af7872a6efca82136c52cce6e3a72aa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9cfc649eb5abea03d91a876f18f8b8d66af7872a6efca82136c52cce6e3a72aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98996, "scanner": "repobility-docker", "fingerprint": "eeddf527bf11960c6056498ed19d2d8b443633dbc38dd485b4b1a8fae5607a7e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eeddf527bf11960c6056498ed19d2d8b443633dbc38dd485b4b1a8fae5607a7e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leveldb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98993, "scanner": "repobility-docker", "fingerprint": "2e6317ae0667a40b30926b96846aa49e247292573a7781255a2cef4c556e6a1a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e6317ae0667a40b30926b96846aa49e247292573a7781255a2cef4c556e6a1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leveldb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98992, "scanner": "repobility-docker", "fingerprint": "090898d75ea32853c6ebb6a5a43e7c325acd8a82e0e1823d99037038ec3b7355", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|090898d75ea32853c6ebb6a5a43e7c325acd8a82e0e1823d99037038ec3b7355"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leptonica/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98989, "scanner": "repobility-docker", "fingerprint": "6aca71f945f8f8668044346c16a926d0289da7e3192f11e3433fd553e425185d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6aca71f945f8f8668044346c16a926d0289da7e3192f11e3433fd553e425185d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leptonica/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98988, "scanner": "repobility-docker", "fingerprint": "fe4a8a2be120d36e1c0ff4dd47a5812fc7ffa9ad8fc5a72403e458a6166e86da", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fe4a8a2be120d36e1c0ff4dd47a5812fc7ffa9ad8fc5a72403e458a6166e86da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98985, "scanner": "repobility-docker", "fingerprint": "7d9b21022d41379da85d313cb1a9fe27fa02581e33f1739bf6ac7f23d81e8421", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d9b21022d41379da85d313cb1a9fe27fa02581e33f1739bf6ac7f23d81e8421"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lcms/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98984, "scanner": "repobility-docker", "fingerprint": "76caaa16b1dd84df0b69caf52c826af5d098d3daaa5d3e9d54cffd697ff12c0d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76caaa16b1dd84df0b69caf52c826af5d098d3daaa5d3e9d54cffd697ff12c0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lark-parser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98983, "scanner": "repobility-docker", "fingerprint": "66a54192ce3aaea4e724143cf482de37017ed28abbb9b21219dafc83146cd5bf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|66a54192ce3aaea4e724143cf482de37017ed28abbb9b21219dafc83146cd5bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lark-parser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98982, "scanner": "repobility-docker", "fingerprint": "ea91db1f10aff47b7b38a083e897c7dfcde39d48b874deac8d02195053617067", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea91db1f10aff47b7b38a083e897c7dfcde39d48b874deac8d02195053617067"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lame/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98979, "scanner": "repobility-docker", "fingerprint": "b1a08946c9e6804b6b43a84fc350aac1ecee1c5302ace030cbff3405454ee557", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b1a08946c9e6804b6b43a84fc350aac1ecee1c5302ace030cbff3405454ee557"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lame/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98978, "scanner": "repobility-docker", "fingerprint": "e268d3d230c56e1ec46463cdf29218bd25b175958c4c38859356376f7eb94449", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e268d3d230c56e1ec46463cdf29218bd25b175958c4c38859356376f7eb94449"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kyverno/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98977, "scanner": "repobility-docker", "fingerprint": "cb57e4226df3fc49783a3396b7d311a80d0c9038ad900611f21aa4d80484ddd4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb57e4226df3fc49783a3396b7d311a80d0c9038ad900611f21aa4d80484ddd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kyverno/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98976, "scanner": "repobility-docker", "fingerprint": "35a6c8dd0c9873b059b0226ca00543f330a43301bafe0be3965b3b7fd203710a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35a6c8dd0c9873b059b0226ca00543f330a43301bafe0be3965b3b7fd203710a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubevirt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98973, "scanner": "repobility-docker", "fingerprint": "3eb44701443456abc21920f7217388cc0c813698c39b88bdcb152476de018316", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3eb44701443456abc21920f7217388cc0c813698c39b88bdcb152476de018316"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubevirt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98972, "scanner": "repobility-docker", "fingerprint": "f1481a9e519124e91583f2bf0dee72e4c0dac54b5c8bba8679c1f9a58bdc6a25", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1481a9e519124e91583f2bf0dee72e4c0dac54b5c8bba8679c1f9a58bdc6a25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubernetes-cluster-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98971, "scanner": "repobility-docker", "fingerprint": "0b3f09ecafdb59dbd300585b549f729324aeba7d741a2c41f36b65e99691e20b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b3f09ecafdb59dbd300585b549f729324aeba7d741a2c41f36b65e99691e20b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubernetes/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98970, "scanner": "repobility-docker", "fingerprint": "98e449e55041bb3786117ab5d363d4611ddb0f5e3d3a22488a777e24ad3189f5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98e449e55041bb3786117ab5d363d4611ddb0f5e3d3a22488a777e24ad3189f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubernetes/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98969, "scanner": "repobility-docker", "fingerprint": "e475c2b76a49e217792da4bc1e676f191e5d047fc446a3529b866bcfd98f255f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e475c2b76a49e217792da4bc1e676f191e5d047fc446a3529b866bcfd98f255f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-spark-operator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98968, "scanner": "repobility-docker", "fingerprint": "f585c68a5aa04a81799bd63c0350295b562fb24161403daf7c8d82a3d742a295", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f585c68a5aa04a81799bd63c0350295b562fb24161403daf7c8d82a3d742a295"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-spark-operator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98967, "scanner": "repobility-docker", "fingerprint": "d7d52cfc02c342a883fc3fdd68798ad5eef2f95fdab704fc46994def7055d90b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7d52cfc02c342a883fc3fdd68798ad5eef2f95fdab704fc46994def7055d90b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-pipelines/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98966, "scanner": "repobility-docker", "fingerprint": "4f16df168e8cdfc57efe6a120db2ab7f901fdb24f2bac276860c1bca44191c75", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f16df168e8cdfc57efe6a120db2ab7f901fdb24f2bac276860c1bca44191c75"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-pipelines/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98965, "scanner": "repobility-docker", "fingerprint": "eb68de54f6fe03c5ab027ca28fec93a8f5da204629dfe509da2ec1c1dcbc5a1d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb68de54f6fe03c5ab027ca28fec93a8f5da204629dfe509da2ec1c1dcbc5a1d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-model-registry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98964, "scanner": "repobility-docker", "fingerprint": "75f6d86f22c54e24ea67f06e47f6af9efaba287236d0a61fc50b2efbb9627201", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75f6d86f22c54e24ea67f06e47f6af9efaba287236d0a61fc50b2efbb9627201"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-model-registry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98963, "scanner": "repobility-docker", "fingerprint": "c9803749ee76383a0298614347c9c0acfa1c7da337ff3f38d62165bc27b7b6c0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9803749ee76383a0298614347c9c0acfa1c7da337ff3f38d62165bc27b7b6c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-katib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98962, "scanner": "repobility-docker", "fingerprint": "b4a7cf0e3e7b1d619b49ae461d3eafddd23eaa7b8c882d2c75fca9d4a031d4e6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4a7cf0e3e7b1d619b49ae461d3eafddd23eaa7b8c882d2c75fca9d4a031d4e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeflow-katib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98961, "scanner": "repobility-docker", "fingerprint": "5cc60aa17442ac1782d40f563c2933c65d2a8cfa0deb0a41f8d03c52a845b6f1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5cc60aa17442ac1782d40f563c2933c65d2a8cfa0deb0a41f8d03c52a845b6f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeedge/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98960, "scanner": "repobility-docker", "fingerprint": "6fdf54ea9292494c30209752bc54cca417af269c7da8d60186ff11153f77ff04", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6fdf54ea9292494c30209752bc54cca417af269c7da8d60186ff11153f77ff04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubeedge/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98959, "scanner": "repobility-docker", "fingerprint": "ad7fd9afee3decf45324abe69759981d05e9a02ed6baa98d3aacb1aec022f3a1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad7fd9afee3decf45324abe69759981d05e9a02ed6baa98d3aacb1aec022f3a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubearmor/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98958, "scanner": "repobility-docker", "fingerprint": "275d20a51e304fc61040cf31c31ea1b094588a894c647dafed58d6262246782a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|275d20a51e304fc61040cf31c31ea1b094588a894c647dafed58d6262246782a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubearmor/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98957, "scanner": "repobility-docker", "fingerprint": "ca926dfd2f24e7f361dc38744cd9e19854bf761065c05ac266cf958880bb395b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca926dfd2f24e7f361dc38744cd9e19854bf761065c05ac266cf958880bb395b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kryo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98956, "scanner": "repobility-docker", "fingerprint": "ed19ce85ac4a36d839d0ef7d152b580104d4a6ce086fb935f417fa68b3d3ad31", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed19ce85ac4a36d839d0ef7d152b580104d4a6ce086fb935f417fa68b3d3ad31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kryo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98955, "scanner": "repobility-docker", "fingerprint": "4aa532b431683de4be2fcd05accf092811570637a717e50e4126fee78e160a68", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4aa532b431683de4be2fcd05accf092811570637a717e50e4126fee78e160a68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/krb5/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98952, "scanner": "repobility-docker", "fingerprint": "26e5f0fe9a7a26eac398045e7ffbfb87fa88564939c0f931318e70b1d0bbda8a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26e5f0fe9a7a26eac398045e7ffbfb87fa88564939c0f931318e70b1d0bbda8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/krb5/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98951, "scanner": "repobility-docker", "fingerprint": "716ddb1176ec5cd94aacea9e1ce8fd790bd6ab145be50b72d96b5d025d22c8bc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|716ddb1176ec5cd94aacea9e1ce8fd790bd6ab145be50b72d96b5d025d22c8bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/knot-dns/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98948, "scanner": "repobility-docker", "fingerprint": "6a812618dcc10e62cdfe55197460b938491d5e7864db0dfd77ed85248c8f5383", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a812618dcc10e62cdfe55197460b938491d5e7864db0dfd77ed85248c8f5383"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/knative/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98947, "scanner": "repobility-docker", "fingerprint": "b117c1712040990323d483634b4eb53cb62d0cf9e89c2b3a692c5980381c1222", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b117c1712040990323d483634b4eb53cb62d0cf9e89c2b3a692c5980381c1222"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/knative/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98946, "scanner": "repobility-docker", "fingerprint": "aa793677eaff141b5ca0eedbf733b74ac40c657c02959b3d3c11b6c4a4d8a3a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa793677eaff141b5ca0eedbf733b74ac40c657c02959b3d3c11b6c4a4d8a3a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kmime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98945, "scanner": "repobility-docker", "fingerprint": "7f3cabe24d6edbb594424667838a4329587c3a01c178f7b48958c1049480d8fc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f3cabe24d6edbb594424667838a4329587c3a01c178f7b48958c1049480d8fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kmime/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98944, "scanner": "repobility-docker", "fingerprint": "2372873a3f6f345ad70db708dd6d6f7fe39ee96bbdf6f51bb04d3e92ec56f6a9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2372873a3f6f345ad70db708dd6d6f7fe39ee96bbdf6f51bb04d3e92ec56f6a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kiwisolver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98941, "scanner": "repobility-docker", "fingerprint": "ccae485be67f8807c9310dc7559060ff66c6ed9d5b8e45f734dea322c736fbc3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ccae485be67f8807c9310dc7559060ff66c6ed9d5b8e45f734dea322c736fbc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kiwisolver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98940, "scanner": "repobility-docker", "fingerprint": "28613f727506ac02b8b004718ea5ac28dd4856fdd471b1a023b9d5aa0b245e56", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28613f727506ac02b8b004718ea5ac28dd4856fdd471b1a023b9d5aa0b245e56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kimageformats/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98939, "scanner": "repobility-docker", "fingerprint": "4f63aff76bfb39e0e862e84daa6ae76a9dd902b538a06ea88a5eebc948a23ee2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f63aff76bfb39e0e862e84daa6ae76a9dd902b538a06ea88a5eebc948a23ee2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kimageformats/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98938, "scanner": "repobility-docker", "fingerprint": "17192de3c66bea384f12f60e022c9b08bf71dd4b74c14354f17c8f6bea3fc389", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17192de3c66bea384f12f60e022c9b08bf71dd4b74c14354f17c8f6bea3fc389"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kie-soup/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98937, "scanner": "repobility-docker", "fingerprint": "a52fd94a205910e2ad78e6d711eb755909ad05469d6bad1d65523035c1931a9e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a52fd94a205910e2ad78e6d711eb755909ad05469d6bad1d65523035c1931a9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kie-soup/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98936, "scanner": "repobility-docker", "fingerprint": "096f798f3bafb164abc344244d5b08a969c9f3641edac3ab1561013263d78c4a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|096f798f3bafb164abc344244d5b08a969c9f3641edac3ab1561013263d78c4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keystone/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98932, "scanner": "repobility-docker", "fingerprint": "104da6a14921bb35bd8a34027911fa9f1d34db3c92735c11a73a3327eae4aab5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|104da6a14921bb35bd8a34027911fa9f1d34db3c92735c11a73a3327eae4aab5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keycloak/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98929, "scanner": "repobility-docker", "fingerprint": "b93eb473c68cfc54dd20f9b7cbcab6018cd869db611831e92eec88588e2c4c14", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b93eb473c68cfc54dd20f9b7cbcab6018cd869db611831e92eec88588e2c4c14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keycloak/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98928, "scanner": "repobility-docker", "fingerprint": "06967b14c42da2da9ce8932ae2e4a0769178cb5eaebc02d2c533be084f793289", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|06967b14c42da2da9ce8932ae2e4a0769178cb5eaebc02d2c533be084f793289"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keras/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98926, "scanner": "repobility-docker", "fingerprint": "bac3025151d10c7db2f83bb8c850a070979ce584fbef70311c488023a8dff9e9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bac3025151d10c7db2f83bb8c850a070979ce584fbef70311c488023a8dff9e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kea/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98924, "scanner": "repobility-docker", "fingerprint": "6ffbdd9fc80e6783517696430bdedd2072db7d0df94023f93a9d031c5511522e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ffbdd9fc80e6783517696430bdedd2072db7d0df94023f93a9d031c5511522e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kde-thumbnailers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98923, "scanner": "repobility-docker", "fingerprint": "bf8b27c27777b5ac85ddde13127738afe8208946c24a4cf7ed90f2f73faf869e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf8b27c27777b5ac85ddde13127738afe8208946c24a4cf7ed90f2f73faf869e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kde-thumbnailers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98922, "scanner": "repobility-docker", "fingerprint": "4249bcd753886e48b0b2a3574fe2cbabbf6f03922671825117e6831b3417fe5a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4249bcd753886e48b0b2a3574fe2cbabbf6f03922671825117e6831b3417fe5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kcodecs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98921, "scanner": "repobility-docker", "fingerprint": "713c0d2d251a578ff9fe96b3ed5376910f1a18b7b30c12f0075bdb4a03dfd843", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|713c0d2d251a578ff9fe96b3ed5376910f1a18b7b30c12f0075bdb4a03dfd843"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kcodecs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98920, "scanner": "repobility-docker", "fingerprint": "6e7cebe8a4d082c880b2889122358d77b180c93db3390631726177f8c68a2547", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e7cebe8a4d082c880b2889122358d77b180c93db3390631726177f8c68a2547"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/karchive/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98919, "scanner": "repobility-docker", "fingerprint": "26d3fbd46fb71b6ad149efeb354ef8a4d8f8b7f7a570b20068056dae609c24a5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26d3fbd46fb71b6ad149efeb354ef8a4d8f8b7f7a570b20068056dae609c24a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/karchive/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98918, "scanner": "repobility-docker", "fingerprint": "a2faac25324185501bc939270c7f8539ea8bf2d98bd4894f8225e860fe88dec3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2faac25324185501bc939270c7f8539ea8bf2d98bd4894f8225e860fe88dec3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kamailio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98915, "scanner": "repobility-docker", "fingerprint": "990dee713c5bbcc6af381ce6cdbe58d11747e8e4dca45887b11e88de1028a094", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|990dee713c5bbcc6af381ce6cdbe58d11747e8e4dca45887b11e88de1028a094"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kamailio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98914, "scanner": "repobility-docker", "fingerprint": "813e58d2b76ddfefe602276a811053fc26779d3f694b181a04be88526a9c52d6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|813e58d2b76ddfefe602276a811053fc26779d3f694b181a04be88526a9c52d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98909, "scanner": "repobility-docker", "fingerprint": "7f9ecb8b55800cccace548d06b2aeae269e77700dcee5e9ab341a5cf072e65a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f9ecb8b55800cccace548d06b2aeae269e77700dcee5e9ab341a5cf072e65a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98908, "scanner": "repobility-docker", "fingerprint": "03b978e6558e309c6ef548c72c0749330c2c72a8db594bc0c18a6e605d17ba0b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03b978e6558e309c6ef548c72c0749330c2c72a8db594bc0c18a6e605d17ba0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jxls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98907, "scanner": "repobility-docker", "fingerprint": "8ae697fb5a892665a89d35c7c9687e5f916cac462806e511e90aa86ec686851f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ae697fb5a892665a89d35c7c9687e5f916cac462806e511e90aa86ec686851f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jxls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98906, "scanner": "repobility-docker", "fingerprint": "02b2edc2b609bdc710485596c9a440d66c65ac72d1b6e764e1ac3c9bb887f9eb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02b2edc2b609bdc710485596c9a440d66c65ac72d1b6e764e1ac3c9bb887f9eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jwt-verify-lib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98903, "scanner": "repobility-docker", "fingerprint": "0560c33e5a73f8198ad14fcba10d61e7e955f4cc9275638f65e240371a4e40ae", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0560c33e5a73f8198ad14fcba10d61e7e955f4cc9275638f65e240371a4e40ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jwt-verify-lib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98902, "scanner": "repobility-docker", "fingerprint": "6da71cfe4715a994af4ab5bd66a5b7516a9b75a21c685792b138331aa1607e55", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6da71cfe4715a994af4ab5bd66a5b7516a9b75a21c685792b138331aa1607e55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter_server/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98899, "scanner": "repobility-docker", "fingerprint": "c0ec3bb300a4463c1aefe4eda42748cbcf6b2594ab31b9965a27ae939514a1da", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c0ec3bb300a4463c1aefe4eda42748cbcf6b2594ab31b9965a27ae939514a1da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter_server/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98898, "scanner": "repobility-docker", "fingerprint": "d548531cdbc30979766444614baa0ea36a481bbe44d5f615703472651436ec01", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d548531cdbc30979766444614baa0ea36a481bbe44d5f615703472651436ec01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter-nbconvert/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98897, "scanner": "repobility-docker", "fingerprint": "82c793b7a846fe5d30cf3f0d8ad73367cecdeeefe0b7c5e56a8ce7e7d069947d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82c793b7a846fe5d30cf3f0d8ad73367cecdeeefe0b7c5e56a8ce7e7d069947d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter-nbconvert/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98896, "scanner": "repobility-docker", "fingerprint": "2f3d27f51abe126675fe0d837f7c08abd16a04283c3f7e35ddff52a8a08f5a9a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2f3d27f51abe126675fe0d837f7c08abd16a04283c3f7e35ddff52a8a08f5a9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/junrar/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98895, "scanner": "repobility-docker", "fingerprint": "d282c1414b35a3107b31382c48c7508de46bee39d86936479ec1fd9f2abd7415", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d282c1414b35a3107b31382c48c7508de46bee39d86936479ec1fd9f2abd7415"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jul-to-slf4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98894, "scanner": "repobility-docker", "fingerprint": "1b7ebc15c0e989e38ab3edbb566e441be7ca39595f3af10f24c90a20efd80602", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b7ebc15c0e989e38ab3edbb566e441be7ca39595f3af10f24c90a20efd80602"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jul-to-slf4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98893, "scanner": "repobility-docker", "fingerprint": "39dbaebb513b87e3f3e6f6157d921f0b5d918fd5f39319cda153f5bf4ab5a0d7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|39dbaebb513b87e3f3e6f6157d921f0b5d918fd5f39319cda153f5bf4ab5a0d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/juju/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98892, "scanner": "repobility-docker", "fingerprint": "64a91354bde6fbf95e4e20517e31ada7efc77b9ffbdbaf6b21d91c44e68f37a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64a91354bde6fbf95e4e20517e31ada7efc77b9ffbdbaf6b21d91c44e68f37a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/juju/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98891, "scanner": "repobility-docker", "fingerprint": "45022c64e5de9239c98ea00da6cc2e335c8545763c5e044fc4a75e39b70b3bcb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45022c64e5de9239c98ea00da6cc2e335c8545763c5e044fc4a75e39b70b3bcb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jts/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98890, "scanner": "repobility-docker", "fingerprint": "1cee681b757046323b4ebd8f271eabd9acfb43af4c6b766c000a4fd5e67d7e3f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1cee681b757046323b4ebd8f271eabd9acfb43af4c6b766c000a4fd5e67d7e3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jts/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98889, "scanner": "repobility-docker", "fingerprint": "fb6a202a7b1f9107553aa24fcaa613e7e1b8083f325f08d35912ae6702d43531", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb6a202a7b1f9107553aa24fcaa613e7e1b8083f325f08d35912ae6702d43531"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jstl-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98887, "scanner": "repobility-docker", "fingerprint": "ca61f5a0d401a843007357cbff137a95cfe6adb0c5b1fa4b28bb1ee410eee206", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca61f5a0d401a843007357cbff137a95cfe6adb0c5b1fa4b28bb1ee410eee206"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jstl-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98886, "scanner": "repobility-docker", "fingerprint": "96584ae3b856e0e2245eddfadb348e8857eaaaef44a558111f6153aa2238c407", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96584ae3b856e0e2245eddfadb348e8857eaaaef44a558111f6153aa2238c407"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsqlparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98883, "scanner": "repobility-docker", "fingerprint": "26ca5ef6ad54c6bd5036340bce36b54f8f9536a7c57cd9f19091809590a5ea5d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26ca5ef6ad54c6bd5036340bce36b54f8f9536a7c57cd9f19091809590a5ea5d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsqlparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98882, "scanner": "repobility-docker", "fingerprint": "529f18856bba12b6c0474f0ae4899c6ffa19e8fc25777c98e6b8709b5d50a415", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|529f18856bba12b6c0474f0ae4899c6ffa19e8fc25777c98e6b8709b5d50a415"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoup/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98881, "scanner": "repobility-docker", "fingerprint": "2a2902d58d634888d8ae05142810236efe87572a50f53af5244f8b81c518a0e5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a2902d58d634888d8ae05142810236efe87572a50f53af5244f8b81c518a0e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoup/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98880, "scanner": "repobility-docker", "fingerprint": "fafc1102ea94d95d8434de60d0b820e21276035dd74eec3c252349c4dd95321a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fafc1102ea94d95d8434de60d0b820e21276035dd74eec3c252349c4dd95321a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonschema/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98879, "scanner": "repobility-docker", "fingerprint": "35a7488c7b912a4c944e21e69b663054342d228b9315a6dbda53ea0e230cc7a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35a7488c7b912a4c944e21e69b663054342d228b9315a6dbda53ea0e230cc7a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonpickle/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98878, "scanner": "repobility-docker", "fingerprint": "9d7f96044c13a89afbeda2c66a6df8a32929de47f9d6f53f067f3027d6681d50", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d7f96044c13a89afbeda2c66a6df8a32929de47f9d6f53f067f3027d6681d50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonpickle/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98877, "scanner": "repobility-docker", "fingerprint": "039d2a15a87dd8f91e6a73d091ce8cf8897c6b2080945a3812a324bc2eb3ac79", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|039d2a15a87dd8f91e6a73d091ce8cf8897c6b2080945a3812a324bc2eb3ac79"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonpath/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98876, "scanner": "repobility-docker", "fingerprint": "194a553b7e67d417745e2e7d05cdc3a401d21ba47903e79af4d49ed3bfe5d876", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|194a553b7e67d417745e2e7d05cdc3a401d21ba47903e79af4d49ed3bfe5d876"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonpath/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98875, "scanner": "repobility-docker", "fingerprint": "c319942bef910c6748dd2f6d771e840b00905a4d7d160a25dddb662f4628700f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c319942bef910c6748dd2f6d771e840b00905a4d7d160a25dddb662f4628700f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98874, "scanner": "repobility-docker", "fingerprint": "6d007b30ac49537119aa6c395ffe7911f25dfddb28b1c484162207e2c373bf13", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d007b30ac49537119aa6c395ffe7911f25dfddb28b1c484162207e2c373bf13"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98873, "scanner": "repobility-docker", "fingerprint": "6650469dcb337bdedcc24a58e194bc83bc6479073b6125935f75c50810024460", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6650469dcb337bdedcc24a58e194bc83bc6479073b6125935f75c50810024460"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonp-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98872, "scanner": "repobility-docker", "fingerprint": "d79109aa1eeb5657a663435560c4487536c0f7672adcb3fe4f84feb5967add8d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d79109aa1eeb5657a663435560c4487536c0f7672adcb3fe4f84feb5967add8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonp-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98871, "scanner": "repobility-docker", "fingerprint": "fd5aba1feae8c4f2022273b4ff693fc6c7ec25c49551874d71ad7c68c313796d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd5aba1feae8c4f2022273b4ff693fc6c7ec25c49551874d71ad7c68c313796d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonnet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98868, "scanner": "repobility-docker", "fingerprint": "91db189705fdcaa412c966ce90090cfac5f486ffc3cc5dcbbede703da9076699", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91db189705fdcaa412c966ce90090cfac5f486ffc3cc5dcbbede703da9076699"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonnet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98867, "scanner": "repobility-docker", "fingerprint": "caf0eaa7caa0bd5c312f35df36b36cb8a7736c9431cdbea6ece45adf2b66bc8e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|caf0eaa7caa0bd5c312f35df36b36cb8a7736c9431cdbea6ece45adf2b66bc8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98864, "scanner": "repobility-docker", "fingerprint": "d2a1ff77e1ed2e1de631a0ca0f8bee28b2a33a9907cef95d52e569c148b3a718", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2a1ff77e1ed2e1de631a0ca0f8bee28b2a33a9907cef95d52e569c148b3a718"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncons/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98861, "scanner": "repobility-docker", "fingerprint": "7e74f1151dee66b964f09488973e85fbe31b7b0cfafeb74cb98d3c923749e849", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e74f1151dee66b964f09488973e85fbe31b7b0cfafeb74cb98d3c923749e849"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncons/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98860, "scanner": "repobility-docker", "fingerprint": "9785f34bc798599fdbdc9a1cb540c4c7025137982711a6ae6b6b69fbcaae2e78", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9785f34bc798599fdbdc9a1cb540c4c7025137982711a6ae6b6b69fbcaae2e78"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json5format/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98859, "scanner": "repobility-docker", "fingerprint": "e2a9f152eac4776daa08514dd3c25bb88722994144578cf2ce2721b8fcc7f4f9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e2a9f152eac4776daa08514dd3c25bb88722994144578cf2ce2721b8fcc7f4f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json5format/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98858, "scanner": "repobility-docker", "fingerprint": "3331f313ddeec475cb61954727e18b628da588880eda1f5f6e3877a8c5662ac7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3331f313ddeec475cb61954727e18b628da588880eda1f5f6e3877a8c5662ac7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json2avro/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98857, "scanner": "repobility-docker", "fingerprint": "3dcef722b4424122d1e0880e0fd0ae1cb9a7918caa0b52c1adb91525bed5951d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dcef722b4424122d1e0880e0fd0ae1cb9a7918caa0b52c1adb91525bed5951d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json2avro/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98856, "scanner": "repobility-docker", "fingerprint": "e4d8a9924d1035af11ea5dc2ca094a7334d64c989856e683c2788fca62d11fcd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4d8a9924d1035af11ea5dc2ca094a7334d64c989856e683c2788fca62d11fcd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-smart-v2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98855, "scanner": "repobility-docker", "fingerprint": "3b7baa80d50bdcede8eae5eca41d996968580fb7c8cf6d20ab46bf4c44467c28", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b7baa80d50bdcede8eae5eca41d996968580fb7c8cf6d20ab46bf4c44467c28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-smart-v2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98854, "scanner": "repobility-docker", "fingerprint": "e32358777efeda053d8d244f84dbd5d691e9d266eb50fba07f5bb707783266d8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e32358777efeda053d8d244f84dbd5d691e9d266eb50fba07f5bb707783266d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-simple/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98853, "scanner": "repobility-docker", "fingerprint": "742c5010b146c8d5d6a5011d2eaa076571b4bc6b02c8484ae4382887a31faf8b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|742c5010b146c8d5d6a5011d2eaa076571b4bc6b02c8484ae4382887a31faf8b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-simple/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98852, "scanner": "repobility-docker", "fingerprint": "de702b77e6d0d289aea1c79f3459db846080e49d9a46ffe3e1f25f2816188e56", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de702b77e6d0d289aea1c79f3459db846080e49d9a46ffe3e1f25f2816188e56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-sanitizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98849, "scanner": "repobility-docker", "fingerprint": "568459cb2da256acd394278e147179fa8f9fdc49d1e1cbe31b4aecc33f7bb94d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|568459cb2da256acd394278e147179fa8f9fdc49d1e1cbe31b4aecc33f7bb94d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-sanitizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98848, "scanner": "repobility-docker", "fingerprint": "190644237947f82ed96f5e9fe6aac1055a2a261e8cb30d173235cc7f5e5a734e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|190644237947f82ed96f5e9fe6aac1055a2a261e8cb30d173235cc7f5e5a734e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-patch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98847, "scanner": "repobility-docker", "fingerprint": "2a455b9611f9f3ac4a4d33b6c5eb4bf140ba57377dc3c409d5966c6ed3ca517e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a455b9611f9f3ac4a4d33b6c5eb4bf140ba57377dc3c409d5966c6ed3ca517e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-patch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98846, "scanner": "repobility-docker", "fingerprint": "9c7f835093009c58676c32e915cbf9dad97310a5242af9bf3baf1e4868d64028", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c7f835093009c58676c32e915cbf9dad97310a5242af9bf3baf1e4868d64028"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98843, "scanner": "repobility-docker", "fingerprint": "d3316a8a222273c10bdf4a172bed042d30807425aed5ff1aa376d9bf0f0e2a21", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3316a8a222273c10bdf4a172bed042d30807425aed5ff1aa376d9bf0f0e2a21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98842, "scanner": "repobility-docker", "fingerprint": "0f7ee45af51ffdfcd25fe2e7e556a003ee59e1d20618758669b76370a59633f9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f7ee45af51ffdfcd25fe2e7e556a003ee59e1d20618758669b76370a59633f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-flattener/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98841, "scanner": "repobility-docker", "fingerprint": "0c054f0d0ca4374ee4a829c1d6d68941b70d74beeba589bc200626786210558e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c054f0d0ca4374ee4a829c1d6d68941b70d74beeba589bc200626786210558e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98838, "scanner": "repobility-docker", "fingerprint": "200fa441fc273a949f690720a74961e3dc72f3335253fb78b9988f9588845f57", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|200fa441fc273a949f690720a74961e3dc72f3335253fb78b9988f9588845f57"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98837, "scanner": "repobility-docker", "fingerprint": "d2686da807b9538d025cb2de6736ba44f0f2df4600418cd80a79edfb58d8710f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2686da807b9538d025cb2de6736ba44f0f2df4600418cd80a79edfb58d8710f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98834, "scanner": "repobility-docker", "fingerprint": "e8da8fffde0734b4a139f3773cc24d388d2fa72b34e9145df477c3afd1be0a08", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8da8fffde0734b4a139f3773cc24d388d2fa72b34e9145df477c3afd1be0a08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98833, "scanner": "repobility-docker", "fingerprint": "0d2b63f30f8a08863568c8d9c2c4e50b40967af0233fc70664e9a2de254c4c82", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0d2b63f30f8a08863568c8d9c2c4e50b40967af0233fc70664e9a2de254c4c82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsmin/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98830, "scanner": "repobility-docker", "fingerprint": "0461396526102a175fd4492cccfb4667e1b5a6115ad10f666a87d54b8a0a6159", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0461396526102a175fd4492cccfb4667e1b5a6115ad10f666a87d54b8a0a6159"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsmin/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98829, "scanner": "repobility-docker", "fingerprint": "90112e1c1d71b6005339c182031914f73bf5bef5c2c654c693e43229cfec32b3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90112e1c1d71b6005339c182031914f73bf5bef5c2c654c693e43229cfec32b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsign/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98828, "scanner": "repobility-docker", "fingerprint": "ecee43b845f7ce7b9be3e944fe078724ef65ef9a6af1883c415646b4a52f2334", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ecee43b845f7ce7b9be3e944fe078724ef65ef9a6af1883c415646b4a52f2334"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsign/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98827, "scanner": "repobility-docker", "fingerprint": "a94fe38adc3c735886d4924215d3e7bcb1899f8fcfcc71963108c581a7cc9643", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a94fe38adc3c735886d4924215d3e7bcb1899f8fcfcc71963108c581a7cc9643"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsemver/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98826, "scanner": "repobility-docker", "fingerprint": "dc25077b117f4a9bcdb738fedcbd0c75995a65090f07cb49dbe4c27a5a813e62", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc25077b117f4a9bcdb738fedcbd0c75995a65090f07cb49dbe4c27a5a813e62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsemver/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98825, "scanner": "repobility-docker", "fingerprint": "872ee074705b8d598ff4818e04782c5c447e7b83cf5b186eb1703c7390acb4b8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|872ee074705b8d598ff4818e04782c5c447e7b83cf5b186eb1703c7390acb4b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98821, "scanner": "repobility-docker", "fingerprint": "c7f7b807151df18b7fb221ba2dce588a39f089de75448abf4c059f522dd81e72", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7f7b807151df18b7fb221ba2dce588a39f089de75448abf4c059f522dd81e72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsch/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98820, "scanner": "repobility-docker", "fingerprint": "5e9c60958e89a4a77716bc3ae97cf2b2106b6e7bdc67bde6b541df25187534f0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e9c60958e89a4a77716bc3ae97cf2b2106b6e7bdc67bde6b541df25187534f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98817, "scanner": "repobility-docker", "fingerprint": "e8a4024ab64e926d50f1de46428f586c698c6b71a966399406a5ba2c6e8ef638", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8a4024ab64e926d50f1de46428f586c698c6b71a966399406a5ba2c6e8ef638"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98816, "scanner": "repobility-docker", "fingerprint": "30048bc126e1a019c7af9efc0a80ae8d15fedfb3e5cbfd291d7985a7115d4a3a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|30048bc126e1a019c7af9efc0a80ae8d15fedfb3e5cbfd291d7985a7115d4a3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98815, "scanner": "repobility-docker", "fingerprint": "37b1c10e14780f40c7b0609c44bd461de2f221b2075ef453f023026d900b6435", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37b1c10e14780f40c7b0609c44bd461de2f221b2075ef453f023026d900b6435"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98814, "scanner": "repobility-docker", "fingerprint": "f3a7eed5068b88d13db057566dac2cbc644f4de1d283d94a657bb141860acded", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3a7eed5068b88d13db057566dac2cbc644f4de1d283d94a657bb141860acded"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98811, "scanner": "repobility-docker", "fingerprint": "2717632cb2da9303a8ffae4f3311b9d5547cbc6d17fa2fdbb4c44d0b17aed727", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2717632cb2da9303a8ffae4f3311b9d5547cbc6d17fa2fdbb4c44d0b17aed727"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98810, "scanner": "repobility-docker", "fingerprint": "93934f00f1df97185fae2a435b1f75c841280ceba9f0afaa1d02440e4906b6c6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93934f00f1df97185fae2a435b1f75c841280ceba9f0afaa1d02440e4906b6c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpegoptim/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98807, "scanner": "repobility-docker", "fingerprint": "0a202c6d01a8c67f772b330b6d7cc8ca77080b4b64d5988fd1c65bf1475b58ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a202c6d01a8c67f772b330b6d7cc8ca77080b4b64d5988fd1c65bf1475b58ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpegoptim/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98806, "scanner": "repobility-docker", "fingerprint": "2f44d35709339aefb3c79cb773de1a94748ca9b55e393552568a021b715157ec", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2f44d35709339aefb3c79cb773de1a94748ca9b55e393552568a021b715157ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpeg-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98805, "scanner": "repobility-docker", "fingerprint": "282eafb03e8a3bb9730697f52a0c666bb3d3328a82a7cbadb630da0fa8dc40c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|282eafb03e8a3bb9730697f52a0c666bb3d3328a82a7cbadb630da0fa8dc40c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpeg-js/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98804, "scanner": "repobility-docker", "fingerprint": "3a289f8b96b1b64fc33b45417a5b80a244a4b61874abc4359ab407201e240b90", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a289f8b96b1b64fc33b45417a5b80a244a4b61874abc4359ab407201e240b90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jose4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98803, "scanner": "repobility-docker", "fingerprint": "ab6097fae79f94952af68b77cd53d6aec765694d741619507dffc4c5901081b9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab6097fae79f94952af68b77cd53d6aec765694d741619507dffc4c5901081b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jose4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98802, "scanner": "repobility-docker", "fingerprint": "04d1d67457332d6d9a6a0cf93f8ac0f31be8e350a5812520841125e88ef27ce7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04d1d67457332d6d9a6a0cf93f8ac0f31be8e350a5812520841125e88ef27ce7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jopt-simple/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98801, "scanner": "repobility-docker", "fingerprint": "2a1502c086f67ba98c13d5e3e24a428d778023d99a84e2da09489f03d12bdafb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a1502c086f67ba98c13d5e3e24a428d778023d99a84e2da09489f03d12bdafb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jopt-simple/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98800, "scanner": "repobility-docker", "fingerprint": "3fcb43f4ae9bae2f800091c3cb922f4f578a45e4c3c739fc1ff44d175bb54b2d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fcb43f4ae9bae2f800091c3cb922f4f578a45e4c3c739fc1ff44d175bb54b2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jooq/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98799, "scanner": "repobility-docker", "fingerprint": "c812d654c9d9920b13fbc9acecab2db4c65e8f5b697032c161d76ed273d00060", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c812d654c9d9920b13fbc9acecab2db4c65e8f5b697032c161d76ed273d00060"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jooq/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98798, "scanner": "repobility-docker", "fingerprint": "ba82b0df2079a25d8dae2d0a2fc6f12a78acd9f63da048c6ca56b86426964587", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba82b0df2079a25d8dae2d0a2fc6f12a78acd9f63da048c6ca56b86426964587"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joni/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98797, "scanner": "repobility-docker", "fingerprint": "aebcfd4da40d7f59f90eaf8fb0f03c1acab19bfabf45aa43eaa1590081ef7713", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aebcfd4da40d7f59f90eaf8fb0f03c1acab19bfabf45aa43eaa1590081ef7713"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joni/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98796, "scanner": "repobility-docker", "fingerprint": "d71ec84bc3a30a1f22dcd73ffc4e487d40135ba7a931cf3e000739cbe985e408", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d71ec84bc3a30a1f22dcd73ffc4e487d40135ba7a931cf3e000739cbe985e408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jolt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98795, "scanner": "repobility-docker", "fingerprint": "46042fdfac59bfa6b7a6f1530340c2633e252b45b47d17f4bee893909659e72a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|46042fdfac59bfa6b7a6f1530340c2633e252b45b47d17f4bee893909659e72a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jolt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98794, "scanner": "repobility-docker", "fingerprint": "8b985d09101009efbf41621661e486322b2e7b32228e487067273cbc9fe54f1a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b985d09101009efbf41621661e486322b2e7b32228e487067273cbc9fe54f1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-time/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98793, "scanner": "repobility-docker", "fingerprint": "ffada81dc3e77339fe4de8af3c01f90c88b858a4c31f1f48de6b288cbe7b2d85", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ffada81dc3e77339fe4de8af3c01f90c88b858a4c31f1f48de6b288cbe7b2d85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-time/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98792, "scanner": "repobility-docker", "fingerprint": "b2e72bd2055771915eeac54483b02d4c7da4b8a7c2a2cd81c36b41d9c203cf7c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:latest", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2e72bd2055771915eeac54483b02d4c7da4b8a7c2a2cd81c36b41d9c203cf7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-convert/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR003", "level": "warning", "message": {"text": "Dockerfile base image uses the latest tag"}, "properties": {"repobilityId": 98789, "scanner": "repobility-docker", "fingerprint": "969695ad7fa90ae4fd9f9bb35bf1784bca5b61316a89922b8bc0ec0e458fdcd0", "category": "docker", "severity": "medium", "confidence": 0.94, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image tag is latest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm:latest", "rule_id": "DKR003", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|969695ad7fa90ae4fd9f9bb35bf1784bca5b61316a89922b8bc0ec0e458fdcd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-convert/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98788, "scanner": "repobility-docker", "fingerprint": "6efbeb555895b53d4fc6af745615dcee4f29b1f746db6c65d264cd7d4c4db1c4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6efbeb555895b53d4fc6af745615dcee4f29b1f746db6c65d264cd7d4c4db1c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joblib/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98787, "scanner": "repobility-docker", "fingerprint": "8255a64a65563023cc6808093cfd38dcebcc84c4def075b6e3e66d1d61d6debb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8255a64a65563023cc6808093cfd38dcebcc84c4def075b6e3e66d1d61d6debb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joblib/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98786, "scanner": "repobility-docker", "fingerprint": "b7d135bcac5330aab0d35fde515aed6cd3bf3af613fc09b8581670fe68541e07", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7d135bcac5330aab0d35fde515aed6cd3bf3af613fc09b8581670fe68541e07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jmh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98785, "scanner": "repobility-docker", "fingerprint": "3cef6a7ec88e12fc04d4f5a726b73269bf91617d42c5c544cf8cd3cad669c8a8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3cef6a7ec88e12fc04d4f5a726b73269bf91617d42c5c544cf8cd3cad669c8a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jmh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98784, "scanner": "repobility-docker", "fingerprint": "451c79699be4a98973fcf219cb150e30dd50a8306bb9b4b2fb04e181d10341e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|451c79699be4a98973fcf219cb150e30dd50a8306bb9b4b2fb04e181d10341e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jmespathpy/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98783, "scanner": "repobility-docker", "fingerprint": "2dd04d890980e9cb85df1d95855fa0d2bbaf1050eb2a0752ada6bf16b7400588", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2dd04d890980e9cb85df1d95855fa0d2bbaf1050eb2a0752ada6bf16b7400588"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jmespathpy/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98782, "scanner": "repobility-docker", "fingerprint": "ba31445be3a110abce6a568dd87b0f565e36237392cd910645aa6c418d6ce29f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba31445be3a110abce6a568dd87b0f565e36237392cd910645aa6c418d6ce29f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jline3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98781, "scanner": "repobility-docker", "fingerprint": "eecf7567403dd722edf08307ffda83c6af536ce1f07694c5f38f240352a14d67", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eecf7567403dd722edf08307ffda83c6af536ce1f07694c5f38f240352a14d67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jline3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98780, "scanner": "repobility-docker", "fingerprint": "c521ce7c96fe2743e18816aaa808be533a62638e5188252b734cd1db45e0e702", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c521ce7c96fe2743e18816aaa808be533a62638e5188252b734cd1db45e0e702"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98777, "scanner": "repobility-docker", "fingerprint": "2b6e9faa71154bb3c53881eb7eab6537a9234a30da2b9ac42663ba17bcb9599b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b6e9faa71154bb3c53881eb7eab6537a9234a30da2b9ac42663ba17bcb9599b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98776, "scanner": "repobility-docker", "fingerprint": "9df54a57a19ffc193539a0572dab97e5738c59e186c1915520de990b6c2d8e14", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9df54a57a19ffc193539a0572dab97e5738c59e186c1915520de990b6c2d8e14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jimp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98775, "scanner": "repobility-docker", "fingerprint": "bc7676ca801d85cd6f01d86f63a1b6f5920b49fa8f02c24fbb57f76aa71d9bda", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc7676ca801d85cd6f01d86f63a1b6f5920b49fa8f02c24fbb57f76aa71d9bda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jimp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98774, "scanner": "repobility-docker", "fingerprint": "0396ce08d4e3bd3f0c5b086425828a9c4a2b097296d5244412f5fdb2a90c6279", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0396ce08d4e3bd3f0c5b086425828a9c4a2b097296d5244412f5fdb2a90c6279"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jimfs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98773, "scanner": "repobility-docker", "fingerprint": "f936284287e061b9ae8ca1ff69af956cf6e94d7a7ea17e7c0f468498064ea076", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f936284287e061b9ae8ca1ff69af956cf6e94d7a7ea17e7c0f468498064ea076"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jimfs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98772, "scanner": "repobility-docker", "fingerprint": "005686bb76bb0dda911a29429a86224c1651ce4cb4d70c820cf5d2f9aa488330", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|005686bb76bb0dda911a29429a86224c1651ce4cb4d70c820cf5d2f9aa488330"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jfreechart/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98770, "scanner": "repobility-docker", "fingerprint": "207d9990288e9d1c56e3fdf7542207222255cd5f67fbcc8f254c400ad29638ec", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|207d9990288e9d1c56e3fdf7542207222255cd5f67fbcc8f254c400ad29638ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jfreechart/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98769, "scanner": "repobility-docker", "fingerprint": "3474b661f23a458bf7a1b34d54e21730a4df2210568afbfa06f1fa41b9b354cb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3474b661f23a458bf7a1b34d54e21730a4df2210568afbfa06f1fa41b9b354cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jflex/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98768, "scanner": "repobility-docker", "fingerprint": "d88c777b28c564e83822ee6dca8fd27159b1f799b068f124672c22813e88bb4c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d88c777b28c564e83822ee6dca8fd27159b1f799b068f124672c22813e88bb4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jflex/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98767, "scanner": "repobility-docker", "fingerprint": "77d2df3936b1f4c3097d13e412f6edb2d4843af8672ae4d4fcc2e8f7b42ed76f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77d2df3936b1f4c3097d13e412f6edb2d4843af8672ae4d4fcc2e8f7b42ed76f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jetty/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 98766, "scanner": "repobility-docker", "fingerprint": "a129c0228d5098b89b093e0cf7f306ebf8a4adc8433d95311e646b37c992085c", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a129c0228d5098b89b093e0cf7f306ebf8a4adc8433d95311e646b37c992085c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jetty/Dockerfile"}, "region": {"startLine": 43}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98765, "scanner": "repobility-docker", "fingerprint": "6ed463b16097e36ad7e32980e5854ffba0f5148bd00cf50af0c7db1847523ed2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ed463b16097e36ad7e32980e5854ffba0f5148bd00cf50af0c7db1847523ed2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jettison/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98764, "scanner": "repobility-docker", "fingerprint": "0e0ac14278ff3c634f6fdd4f06dc9a2ee274234c030e9a86ec4440e67f65593a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e0ac14278ff3c634f6fdd4f06dc9a2ee274234c030e9a86ec4440e67f65593a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jettison/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98763, "scanner": "repobility-docker", "fingerprint": "23c64af72c873ff9725837c751fd3c8fba846caa4b03ab83b4b3ab16520957b5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|23c64af72c873ff9725837c751fd3c8fba846caa4b03ab83b4b3ab16520957b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jersey/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98762, "scanner": "repobility-docker", "fingerprint": "1435c210bc9d238cce5c01ec1da5a52197626a108d5e85aacd7a0c57714d21e7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1435c210bc9d238cce5c01ec1da5a52197626a108d5e85aacd7a0c57714d21e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jersey/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98761, "scanner": "repobility-docker", "fingerprint": "47cd30389dd30096ec404fb8f5218acff4d2ffb4e4a0a740112fd126c291869c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47cd30389dd30096ec404fb8f5218acff4d2ffb4e4a0a740112fd126c291869c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98758, "scanner": "repobility-docker", "fingerprint": "4de0feb84d4196e739a643e9bc5cd959e651c8aa7a792f0bc1bb315d5dc2eee9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4de0feb84d4196e739a643e9bc5cd959e651c8aa7a792f0bc1bb315d5dc2eee9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98757, "scanner": "repobility-docker", "fingerprint": "3d2d6e3fd3beb0fa0c66dff507a273058eaf0a0f0aca73c3a88f92a6e669e9d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3d2d6e3fd3beb0fa0c66dff507a273058eaf0a0f0aca73c3a88f92a6e669e9d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedi/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98756, "scanner": "repobility-docker", "fingerprint": "5bd7622059816f28e341f137061500647828578a6c238e6e3069f9eba26309dc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5bd7622059816f28e341f137061500647828578a6c238e6e3069f9eba26309dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedi/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98755, "scanner": "repobility-docker", "fingerprint": "997daba4c11052717fac82da86e21bf682ccb163af4a37b49ee845ae4a1e7b20", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|997daba4c11052717fac82da86e21bf682ccb163af4a37b49ee845ae4a1e7b20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jdom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98754, "scanner": "repobility-docker", "fingerprint": "943879e5f2ca03a554eb80a69fcd35b176a03201580a13722714cbe6501ffe66", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|943879e5f2ca03a554eb80a69fcd35b176a03201580a13722714cbe6501ffe66"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jdom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98753, "scanner": "repobility-docker", "fingerprint": "430a34faa0915b058a0fc991877d313c0a49fe2f4b6a6717ccbf649c98226451", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|430a34faa0915b058a0fc991877d313c0a49fe2f4b6a6717ccbf649c98226451"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jboss-logging/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98752, "scanner": "repobility-docker", "fingerprint": "9619d081f64d3217c58a9d0832dc03f3c594f6c7d10e8807055bff941411bd14", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9619d081f64d3217c58a9d0832dc03f3c594f6c7d10e8807055bff941411bd14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jboss-logging/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98751, "scanner": "repobility-docker", "fingerprint": "4526ba85bcdad156df1c2a19be61901141601a649c6ead1067ea21fe4169f9ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4526ba85bcdad156df1c2a19be61901141601a649c6ead1067ea21fe4169f9ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jbig2dec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98748, "scanner": "repobility-docker", "fingerprint": "cfeca49dbed7caa11551cbb237fbe9624c094c8e311821ded5351aacef601d31", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cfeca49dbed7caa11551cbb237fbe9624c094c8e311821ded5351aacef601d31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jbig2dec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98747, "scanner": "repobility-docker", "fingerprint": "b3724221ad2ce3b6a97296df3264e073bd3d150345a0f1a6e1f26919416d9762", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3724221ad2ce3b6a97296df3264e073bd3d150345a0f1a6e1f26919416d9762"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jaxb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98746, "scanner": "repobility-docker", "fingerprint": "f2479676b4b298ef336305096ff69ded196c9372c5106b0501e3a050e7edcc9c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2479676b4b298ef336305096ff69ded196c9372c5106b0501e3a050e7edcc9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jaxb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98745, "scanner": "repobility-docker", "fingerprint": "99aab6056fbc6836bf16d8fd0605eed7519862ee4fe0f36687d5a2ff7c514b18", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99aab6056fbc6836bf16d8fd0605eed7519862ee4fe0f36687d5a2ff7c514b18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98742, "scanner": "repobility-docker", "fingerprint": "b9c185b84c793d5e9720942c5952dd19cbff218a2e8d8959dcf5fb4c3ebbba4a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b9c185b84c793d5e9720942c5952dd19cbff218a2e8d8959dcf5fb4c3ebbba4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98741, "scanner": "repobility-docker", "fingerprint": "8791642430818fab3099b2feedf95f079637e1a780952620cf0100453a3a1c49", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8791642430818fab3099b2feedf95f079637e1a780952620cf0100453a3a1c49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javassist/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98740, "scanner": "repobility-docker", "fingerprint": "71918d3fe36941d036e3fd9acbbadd1c004f27e8b063867256e19507ff19b952", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71918d3fe36941d036e3fd9acbbadd1c004f27e8b063867256e19507ff19b952"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javassist/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98739, "scanner": "repobility-docker", "fingerprint": "c174f1367359d81aeb9828f593b8313058e524358c283c359ab5b15c13164f33", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c174f1367359d81aeb9828f593b8313058e524358c283c359ab5b15c13164f33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javascript-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98738, "scanner": "repobility-docker", "fingerprint": "73729f229a0ee92608e63ddd5c270a4d443541da09a38ea906812c68021c8752", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73729f229a0ee92608e63ddd5c270a4d443541da09a38ea906812c68021c8752"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javascript-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98737, "scanner": "repobility-docker", "fingerprint": "8019c1ca2793bbe1dd10633412d001cfb704aa743d8b53b181ff934974602f9e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8019c1ca2793bbe1dd10633412d001cfb704aa743d8b53b181ff934974602f9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javapoet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98734, "scanner": "repobility-docker", "fingerprint": "1d9b3795efc8765b4e772efc6f1c3281c78fcac12ee1dd302709d94fc1067f9b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d9b3795efc8765b4e772efc6f1c3281c78fcac12ee1dd302709d94fc1067f9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javapoet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98733, "scanner": "repobility-docker", "fingerprint": "e8aeb011db6b1ea5deb034bb20794605742283b69d8328f1fa96bc7cba20f194", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8aeb011db6b1ea5deb034bb20794605742283b69d8328f1fa96bc7cba20f194"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javaparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98730, "scanner": "repobility-docker", "fingerprint": "961bf3dcb86c3bea59b7903c16292609f3c47563f1ab148f5f17c1c13818299d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|961bf3dcb86c3bea59b7903c16292609f3c47563f1ab148f5f17c1c13818299d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javacpp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98729, "scanner": "repobility-docker", "fingerprint": "a4154f863e745cb04faac2f2ea6c56f2f221b108c4a5a3ef9ad2ddee3799aa61", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a4154f863e745cb04faac2f2ea6c56f2f221b108c4a5a3ef9ad2ddee3799aa61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javacpp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98728, "scanner": "repobility-docker", "fingerprint": "87ea951e7ae9fc271811895b7def73db580dfa7186bb081a3e5f64a6be72dc70", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87ea951e7ae9fc271811895b7def73db580dfa7186bb081a3e5f64a6be72dc70"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-xmlbuilder/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98727, "scanner": "repobility-docker", "fingerprint": "e66badb9ce54bbd56876f36e43430f9d3c989c808eb7ac83476f391b05efe3ce", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e66badb9ce54bbd56876f36e43430f9d3c989c808eb7ac83476f391b05efe3ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-xmlbuilder/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98726, "scanner": "repobility-docker", "fingerprint": "1a7d48c2369f0bfcb81b927b755e51ce30d39680dce49daf6c77acf097e30d03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a7d48c2369f0bfcb81b927b755e51ce30d39680dce49daf6c77acf097e30d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-uuid-generator/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98725, "scanner": "repobility-docker", "fingerprint": "8fc99f6c412c32bc35693abc7050843196ea9b277729f07378799b80aaa17194", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fc99f6c412c32bc35693abc7050843196ea9b277729f07378799b80aaa17194"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-uuid-generator/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98724, "scanner": "repobility-docker", "fingerprint": "fd10ab28eaec2876635eff52ca0c24338490241f419fa0211228ff4b68583462", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd10ab28eaec2876635eff52ca0c24338490241f419fa0211228ff4b68583462"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-jwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98723, "scanner": "repobility-docker", "fingerprint": "21691d91ebb87872c770388cc0b8f4822c9a813518c2028bd9361b14d1e9d61c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21691d91ebb87872c770388cc0b8f4822c9a813518c2028bd9361b14d1e9d61c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-jwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98722, "scanner": "repobility-docker", "fingerprint": "2a3845705f4b89cf94b2b6c8cc4a692255392a03557589a2b1ccd6bb80773ff8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a3845705f4b89cf94b2b6c8cc4a692255392a03557589a2b1ccd6bb80773ff8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98721, "scanner": "repobility-docker", "fingerprint": "7200e2b96aca5b6013cbe47aa59c2686fb9293a37aed4ac26f5ced75f9a0a60f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7200e2b96aca5b6013cbe47aa59c2686fb9293a37aed4ac26f5ced75f9a0a60f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-diff-utils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98720, "scanner": "repobility-docker", "fingerprint": "cf088969cea28ddde3862ef58f4ef55909dfaa9fc7fad9846bf3ae2fd0b4b901", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf088969cea28ddde3862ef58f4ef55909dfaa9fc7fad9846bf3ae2fd0b4b901"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/java-diff-utils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98719, "scanner": "repobility-docker", "fingerprint": "6d9b1836915fb8644e44968fe06203b9560003339a7a81aa2c4d2af3fc385035", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d9b1836915fb8644e44968fe06203b9560003339a7a81aa2c4d2af3fc385035"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janus-gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98716, "scanner": "repobility-docker", "fingerprint": "5144d4e2dbef65dd9bad853a966c9ab1bae5b6f7d701f2958b0245ccd966ed24", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5144d4e2dbef65dd9bad853a966c9ab1bae5b6f7d701f2958b0245ccd966ed24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janus-gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98715, "scanner": "repobility-docker", "fingerprint": "e2c2d85245b7f1b9119f5c703a403439aea8e286a09e2d944b7ae0b125498b96", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e2c2d85245b7f1b9119f5c703a403439aea8e286a09e2d944b7ae0b125498b96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jansson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98714, "scanner": "repobility-docker", "fingerprint": "90c80d7e7176ef5f4b37b967ead73af007c0550c52f3d76e368e6f27504df309", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90c80d7e7176ef5f4b37b967ead73af007c0550c52f3d76e368e6f27504df309"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jansson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98713, "scanner": "repobility-docker", "fingerprint": "63062e7d8219a6c8a02766ffd6052fe94bb2f2bad7dfe022602dbb202d792b55", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63062e7d8219a6c8a02766ffd6052fe94bb2f2bad7dfe022602dbb202d792b55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jansi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98712, "scanner": "repobility-docker", "fingerprint": "7dc2a9d643f5e4e0cba36e052d6cc29f5728bef581fc9ee58fd438152b50a264", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7dc2a9d643f5e4e0cba36e052d6cc29f5728bef581fc9ee58fd438152b50a264"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jansi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98711, "scanner": "repobility-docker", "fingerprint": "f258e94e7b5a2df631204c321b18d045675698698fc81fc80d36cb34360587ae", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f258e94e7b5a2df631204c321b18d045675698698fc81fc80d36cb34360587ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janino/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98710, "scanner": "repobility-docker", "fingerprint": "b057ca709af654b168e0eb3bacbfe47efeee353f746ba62b88a9ff74efaee519", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b057ca709af654b168e0eb3bacbfe47efeee353f746ba62b88a9ff74efaee519"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janino/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98709, "scanner": "repobility-docker", "fingerprint": "0a561871ed17047031347a531ab92dbf95fe948032cbdd11e522e6c532e9e1f0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a561871ed17047031347a531ab92dbf95fe948032cbdd11e522e6c532e9e1f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98706, "scanner": "repobility-docker", "fingerprint": "b039204541e19cdb0271d57eb0b6caa668a63802215318b9d9ae06195bceecea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b039204541e19cdb0271d57eb0b6caa668a63802215318b9d9ae06195bceecea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janet/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98705, "scanner": "repobility-docker", "fingerprint": "3548aaa23138d23cc3d077001840f5f6addee8d7219754aa3b099c74c6707206", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3548aaa23138d23cc3d077001840f5f6addee8d7219754aa3b099c74c6707206"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jakarta-mail-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98704, "scanner": "repobility-docker", "fingerprint": "8d2a7dd6f16fec97a88940001f24549e9933a4d38368b2a3eb20b6289e368aea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d2a7dd6f16fec97a88940001f24549e9933a4d38368b2a3eb20b6289e368aea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jakarta-mail-api/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98703, "scanner": "repobility-docker", "fingerprint": "306e643320bef95c73c39020210cf5345535874b4ff227943d95f4323d67ec6d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|306e643320bef95c73c39020210cf5345535874b4ff227943d95f4323d67ec6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-modules-java8/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98702, "scanner": "repobility-docker", "fingerprint": "5caeeca0ff8db924b3dd852b949355e217630077832b6eefd344c12f453c1b82", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5caeeca0ff8db924b3dd852b949355e217630077832b6eefd344c12f453c1b82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-modules-java8/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98701, "scanner": "repobility-docker", "fingerprint": "c6603fe5da52b418a026dc6e1672c4c6ffe5278e04f295ce9c782c219dfcb6b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c6603fe5da52b418a026dc6e1672c4c6ffe5278e04f295ce9c782c219dfcb6b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatypes-collections/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98700, "scanner": "repobility-docker", "fingerprint": "55245749354659b8d11257f9caa63842a4b6385d544422f3420c32827734389a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55245749354659b8d11257f9caa63842a4b6385d544422f3420c32827734389a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatype-joda/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98699, "scanner": "repobility-docker", "fingerprint": "bcb865ba7b0245716c36ea6c96e3f4ad058b3e4bd0ff6467debb8e9645362ce4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bcb865ba7b0245716c36ea6c96e3f4ad058b3e4bd0ff6467debb8e9645362ce4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-text/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98698, "scanner": "repobility-docker", "fingerprint": "91960306a49121461d7298eb66efb4a20cc86d180364be09f28675569f60d145", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91960306a49121461d7298eb66efb4a20cc86d180364be09f28675569f60d145"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-text/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98697, "scanner": "repobility-docker", "fingerprint": "92032efd18b5ce1f77b258a3b0fba55f744ff5d09fcb3179fdf4b6796979a7c6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92032efd18b5ce1f77b258a3b0fba55f744ff5d09fcb3179fdf4b6796979a7c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-binary/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98694, "scanner": "repobility-docker", "fingerprint": "ab9667bfe5d0d254af291eebb4e367e35f1ffce842dccf943c30b190f4ef72f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab9667bfe5d0d254af291eebb4e367e35f1ffce842dccf943c30b190f4ef72f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-binary/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98693, "scanner": "repobility-docker", "fingerprint": "64455398f702ff0fd55f24629050e43ac243c94cf27d2ceda2551b8b7246fa03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64455398f702ff0fd55f24629050e43ac243c94cf27d2ceda2551b8b7246fa03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformat-xml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98692, "scanner": "repobility-docker", "fingerprint": "d0d6c96c4034a6756854d6876fd0bf500c3d483ec625af90edff824768a1b859", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0d6c96c4034a6756854d6876fd0bf500c3d483ec625af90edff824768a1b859"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformat-xml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98691, "scanner": "repobility-docker", "fingerprint": "b852175a226a07077f4f8f2d9d45cbdb903943af8f227e8c35c595228eef2926", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b852175a226a07077f4f8f2d9d45cbdb903943af8f227e8c35c595228eef2926"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-databind/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98690, "scanner": "repobility-docker", "fingerprint": "9383cad61344287f3a60c0faaa968eab2881e3bc6e75ef6671c823db2820ca24", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9383cad61344287f3a60c0faaa968eab2881e3bc6e75ef6671c823db2820ca24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-databind/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98689, "scanner": "repobility-docker", "fingerprint": "4a079baf62882272fb6028b7e69f0e10541de759ad4cf52a0ce4d55e739d48d7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a079baf62882272fb6028b7e69f0e10541de759ad4cf52a0ce4d55e739d48d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-core/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98686, "scanner": "repobility-docker", "fingerprint": "38035ea36220075c130fc389d74c33f14d8be4a87a8ba10dca73603864ad1c28", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38035ea36220075c130fc389d74c33f14d8be4a87a8ba10dca73603864ad1c28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itsdangerous/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98685, "scanner": "repobility-docker", "fingerprint": "fbcf1128a6958f42574175aef4868f00b2b4bfd1b6bd73ba75fe4da1340074b2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbcf1128a6958f42574175aef4868f00b2b4bfd1b6bd73ba75fe4da1340074b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itsdangerous/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98684, "scanner": "repobility-docker", "fingerprint": "97eedf20c78892484da80901a87e5e9594e8893395bcdcd8b74e5d8f54b2891b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|97eedf20c78892484da80901a87e5e9594e8893395bcdcd8b74e5d8f54b2891b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itoa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98683, "scanner": "repobility-docker", "fingerprint": "862715e5a6a2ba21e315cecc6e6ac6f6b6f750f02289e9729f3a27cf8aef177b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|862715e5a6a2ba21e315cecc6e6ac6f6b6f750f02289e9729f3a27cf8aef177b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itoa/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98682, "scanner": "repobility-docker", "fingerprint": "4d1c36098d99d20439a0dea1eca809d817795ae145d7754951de12a61b789f69", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d1c36098d99d20439a0dea1eca809d817795ae145d7754951de12a61b789f69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itext7/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98681, "scanner": "repobility-docker", "fingerprint": "ac9096c62695e28ffd3d9992a03ae06854c86e1ffceac7aa4b8feb2fd22ce7f4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac9096c62695e28ffd3d9992a03ae06854c86e1ffceac7aa4b8feb2fd22ce7f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/itext7/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98680, "scanner": "repobility-docker", "fingerprint": "64b316391e765622587810fd8739f4ae0f88eded56f1cafc014ce93b3ded980d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64b316391e765622587810fd8739f4ae0f88eded56f1cafc014ce93b3ded980d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/istio-ztunnel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98679, "scanner": "repobility-docker", "fingerprint": "b3354ccdb7aacd733bf8d6acbb3f0a1f16715f73bd1e19c49b00c58d3415f752", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3354ccdb7aacd733bf8d6acbb3f0a1f16715f73bd1e19c49b00c58d3415f752"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/istio-ztunnel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98678, "scanner": "repobility-docker", "fingerprint": "a23ca3de67f5ed7fbb9b4d46e3b72b6d5f32487c9802a7864022114397626f7b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a23ca3de67f5ed7fbb9b4d46e3b72b6d5f32487c9802a7864022114397626f7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/istio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98677, "scanner": "repobility-docker", "fingerprint": "418bfa1fcbb10bc3f964438ad20ac2b1cbc9eade708ccf01ff2d16c0720ac9d7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|418bfa1fcbb10bc3f964438ad20ac2b1cbc9eade708ccf01ff2d16c0720ac9d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/isodate/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98676, "scanner": "repobility-docker", "fingerprint": "cb41c682d237f14ea94dc93b3ff20c1a0264fc6d2a0dcedaa68daa461562a1f7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb41c682d237f14ea94dc93b3ff20c1a0264fc6d2a0dcedaa68daa461562a1f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/isodate/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98675, "scanner": "repobility-docker", "fingerprint": "ffe4099330af6c1b2abfe3d6d6133a4e30f1fee48b2759ff33c3700689e4c6e9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ffe4099330af6c1b2abfe3d6d6133a4e30f1fee48b2759ff33c3700689e4c6e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/irssi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98672, "scanner": "repobility-docker", "fingerprint": "6e18b7a21b9f87b66bbd7064c1ce5ecd339eb029812f8db60dae9101f0e4f3e0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e18b7a21b9f87b66bbd7064c1ce5ecd339eb029812f8db60dae9101f0e4f3e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/irssi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98671, "scanner": "repobility-docker", "fingerprint": "b2311574e4c0b5798fb6a4a763adb458ceb66e07219160f91e95eb6fdcfd1bf1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2311574e4c0b5798fb6a4a763adb458ceb66e07219160f91e95eb6fdcfd1bf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iroha/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 98670, "scanner": "repobility-docker", "fingerprint": "51986c4dfae693149b7efef7dc2395dde53843f5c98434d04310d46a8d8a7a38", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51986c4dfae693149b7efef7dc2395dde53843f5c98434d04310d46a8d8a7a38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iroha/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98669, "scanner": "repobility-docker", "fingerprint": "535863b3f4ae091368e679aacc764ad4bf44b27a48d1a2187e47be03e671cae2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|535863b3f4ae091368e679aacc764ad4bf44b27a48d1a2187e47be03e671cae2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipython/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98665, "scanner": "repobility-docker", "fingerprint": "d85965c96bfdc6389880300619ea5ff1882a7a3656007508d24fea5c0ec0eb9d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d85965c96bfdc6389880300619ea5ff1882a7a3656007508d24fea5c0ec0eb9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipykernel/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98664, "scanner": "repobility-docker", "fingerprint": "2ede1c709373193faa52c4f3e2960442b2b7755f1aa0d4ed77747b76d6bee068", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ede1c709373193faa52c4f3e2960442b2b7755f1aa0d4ed77747b76d6bee068"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipp-usb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98662, "scanner": "repobility-docker", "fingerprint": "44601e6b137fea04da803fa6d7df13b590be496ab3f1336070d619355003f11d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|44601e6b137fea04da803fa6d7df13b590be496ab3f1336070d619355003f11d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipp-usb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98661, "scanner": "repobility-docker", "fingerprint": "270f439267445f2d0824ccd6aca904c30da2265bfc242fd45cfc3ab62ec9473f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|270f439267445f2d0824ccd6aca904c30da2265bfc242fd45cfc3ab62ec9473f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipfs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98660, "scanner": "repobility-docker", "fingerprint": "6f90b1810726e25b56a7b1942901a42a3fc401026104274a2741bb41b8792e35", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6f90b1810726e25b56a7b1942901a42a3fc401026104274a2741bb41b8792e35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iperf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98657, "scanner": "repobility-docker", "fingerprint": "35e9a578b7307d799d3fa55be4db89d1bf0815408ea555c4032a87ed0a05fcaa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35e9a578b7307d799d3fa55be4db89d1bf0815408ea555c4032a87ed0a05fcaa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipaddress/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98656, "scanner": "repobility-docker", "fingerprint": "ee16713ee286b7d7c525a065bf67b77647f752a660574cbaecf20ca154d0e0c4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee16713ee286b7d7c525a065bf67b77647f752a660574cbaecf20ca154d0e0c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipaddress/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98655, "scanner": "repobility-docker", "fingerprint": "f445abed7a0fbef13847ab8c0d553234424e2aa4e54dc98adc9d5d9401b4f2a9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f445abed7a0fbef13847ab8c0d553234424e2aa4e54dc98adc9d5d9401b4f2a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ion-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98654, "scanner": "repobility-docker", "fingerprint": "b0d6c7c0e6f17351892b1568600e9b6ade0f8fae4f37f5ca4c7e026ca11bec4d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0d6c7c0e6f17351892b1568600e9b6ade0f8fae4f37f5ca4c7e026ca11bec4d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inih/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 98653, "scanner": "repobility-docker", "fingerprint": "6f22287050da2f250f2da9b9c65bb41b2088b6104bdb0e597eab215c0d3689b6", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6f22287050da2f250f2da9b9c65bb41b2088b6104bdb0e597eab215c0d3689b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inih/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98652, "scanner": "repobility-docker", "fingerprint": "1534b7127e7037a90f94963b485ba1902ded61e183ef27953978b3ddc902029d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1534b7127e7037a90f94963b485ba1902ded61e183ef27953978b3ddc902029d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inih/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98651, "scanner": "repobility-docker", "fingerprint": "489a865b2080d0825347e8dfabd2aeac56addbab208331020c0eee7155204674", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|489a865b2080d0825347e8dfabd2aeac56addbab208331020c0eee7155204674"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iniconfig/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98648, "scanner": "repobility-docker", "fingerprint": "773dc2feded1e9258d1b0d3576ef259623238753891fb29808072d53077aba27", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|773dc2feded1e9258d1b0d3576ef259623238753891fb29808072d53077aba27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iniconfig/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98647, "scanner": "repobility-docker", "fingerprint": "3c72162ed55d215c9f7cd8f35a648dcb245899d8af0b9dfe5f50d620d183e251", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c72162ed55d215c9f7cd8f35a648dcb245899d8af0b9dfe5f50d620d183e251"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/influxdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98646, "scanner": "repobility-docker", "fingerprint": "39823df43d00232d1449d78e507cac94c79159d76c03a26193cca60af2f64ed1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|39823df43d00232d1449d78e507cac94c79159d76c03a26193cca60af2f64ed1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inchi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98643, "scanner": "repobility-docker", "fingerprint": "fbb60d80e152563b0e142049ca20e874d07d927636e10682828be22a9a5b69cd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbb60d80e152563b0e142049ca20e874d07d927636e10682828be22a9a5b69cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inchi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98642, "scanner": "repobility-docker", "fingerprint": "493c798095423ecf02c06694fa4b4e23e0f585980a918bd31cbd7c0d242b682d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|493c798095423ecf02c06694fa4b4e23e0f585980a918bd31cbd7c0d242b682d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/importlib_metadata/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98641, "scanner": "repobility-docker", "fingerprint": "586a33e971032267a32aea202acc40b60765d40db11e50340e7975f156aa3055", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|586a33e971032267a32aea202acc40b60765d40db11e50340e7975f156aa3055"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/importlib_metadata/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98640, "scanner": "repobility-docker", "fingerprint": "3464c19df4feef415a5610c1684ab15a5f82940d49f839d0e7b85e3b427fa32a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3464c19df4feef415a5610c1684ab15a5f82940d49f839d0e7b85e3b427fa32a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/immer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98637, "scanner": "repobility-docker", "fingerprint": "6437c043b9ae7913275b6c5fe2825fee83e67c48dcd784da994a567d3367b4f0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6437c043b9ae7913275b6c5fe2825fee83e67c48dcd784da994a567d3367b4f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/immer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98636, "scanner": "repobility-docker", "fingerprint": "fd80e325c4c1bcf9153819ce095f20a2aa14523c083b434b16b362c40f749e46", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd80e325c4c1bcf9153819ce095f20a2aa14523c083b434b16b362c40f749e46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98635, "scanner": "repobility-docker", "fingerprint": "729da6d17c7d7585575d64f5a090f1b5ac9bae6c788d9cf031370b517bb27355", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|729da6d17c7d7585575d64f5a090f1b5ac9bae6c788d9cf031370b517bb27355"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 47}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98631, "scanner": "repobility-docker", "fingerprint": "48efbf8d2025849bb60533c198f6eabbcc2275ccfc309859a1f0d6fefa7d5262", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48efbf8d2025849bb60533c198f6eabbcc2275ccfc309859a1f0d6fefa7d5262"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98630, "scanner": "repobility-docker", "fingerprint": "4c088ee94e62f563ae7723b9cf9be14f8c3c556cbd45aaf24b11fa58056cafa4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c088ee94e62f563ae7723b9cf9be14f8c3c556cbd45aaf24b11fa58056cafa4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imageio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98627, "scanner": "repobility-docker", "fingerprint": "ca8b7f5704a1b9181d06b9ddf881f292290c71dd0b54bf9b8de646beced9576e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca8b7f5704a1b9181d06b9ddf881f292290c71dd0b54bf9b8de646beced9576e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imageio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98626, "scanner": "repobility-docker", "fingerprint": "670a3a4fadb3cfa55b4772ccb62b850f7d98158c60b09603d57b4a92ddaeb9bc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|670a3a4fadb3cfa55b4772ccb62b850f7d98158c60b09603d57b4a92ddaeb9bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98625, "scanner": "repobility-docker", "fingerprint": "25f0351c30323cec2e2d9d2cf2ecd2326ac51983b4cbed63bd8ef03aabc12b98", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25f0351c30323cec2e2d9d2cf2ecd2326ac51983b4cbed63bd8ef03aabc12b98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-rs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98624, "scanner": "repobility-docker", "fingerprint": "156a6d71ff2788cec89c996c2d207fcd09377d19b43c09b485c45176d330c896", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|156a6d71ff2788cec89c996c2d207fcd09377d19b43c09b485c45176d330c896"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-png/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98621, "scanner": "repobility-docker", "fingerprint": "1e7bf541eb2b5706111176579db59c548941e34e64bb933a1dcdcfa5ed52227f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e7bf541eb2b5706111176579db59c548941e34e64bb933a1dcdcfa5ed52227f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-png/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98620, "scanner": "repobility-docker", "fingerprint": "ff3c8bc18d88481d482b30d62085c3e13d9fcaa5dd1c0fc362536e323e416655", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff3c8bc18d88481d482b30d62085c3e13d9fcaa5dd1c0fc362536e323e416655"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ijson/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98617, "scanner": "repobility-docker", "fingerprint": "7eada5b2d8fbce31e1df5e5afd79cdcbff312497b5579bedcad1e62687a3e5b6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7eada5b2d8fbce31e1df5e5afd79cdcbff312497b5579bedcad1e62687a3e5b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ijson/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98616, "scanner": "repobility-docker", "fingerprint": "584ca0e595a18065c00e5faf3afb0af61488e275efdc232b1b61f58b5b1a7b98", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|584ca0e595a18065c00e5faf3afb0af61488e275efdc232b1b61f58b5b1a7b98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/igraph/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98613, "scanner": "repobility-docker", "fingerprint": "b8f7c3a7e6e439694b2d544699dff41bfff1ee1f900d3dda35bf32e3e9bfff00", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8f7c3a7e6e439694b2d544699dff41bfff1ee1f900d3dda35bf32e3e9bfff00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/igraph/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98612, "scanner": "repobility-docker", "fingerprint": "5d3e72fb5b87d889b90bcd10a4b6ea2849f7caec7b4ffb4c48eb42b9380a5b80", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d3e72fb5b87d889b90bcd10a4b6ea2849f7caec7b4ffb4c48eb42b9380a5b80"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/idna/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98609, "scanner": "repobility-docker", "fingerprint": "851efb5c02ac211aa74be21c340bfb145a45d3d3c01f1644b1cfaa2e20eee746", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|851efb5c02ac211aa74be21c340bfb145a45d3d3c01f1644b1cfaa2e20eee746"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/idna/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98608, "scanner": "repobility-docker", "fingerprint": "76c73369b0981bea6ff065f8488a58e6d6236d104191efc7adaf96af3226b4f3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76c73369b0981bea6ff065f8488a58e6d6236d104191efc7adaf96af3226b4f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98605, "scanner": "repobility-docker", "fingerprint": "010e604553fb14948b99743ce05e8d133b3c39e29ea8bb01f8767a6b1093bfa0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|010e604553fb14948b99743ce05e8d133b3c39e29ea8bb01f8767a6b1093bfa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icu/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98604, "scanner": "repobility-docker", "fingerprint": "7b58bea825af29a134df0574d0981cb3c6ae7cc1c254edd0d869295125d0588f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b58bea825af29a134df0574d0981cb3c6ae7cc1c254edd0d869295125d0588f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icalendar/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98603, "scanner": "repobility-docker", "fingerprint": "5d27501cfdd16d270ac7ad37c139b1a6bd4bec6a810cbed06e042aa094f50ceb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d27501cfdd16d270ac7ad37c139b1a6bd4bec6a810cbed06e042aa094f50ceb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icalendar/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98602, "scanner": "repobility-docker", "fingerprint": "32bb68d3702c82e52100f1b2dd1c78e1d59141968d1b395c667df0ab0daabb65", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|32bb68d3702c82e52100f1b2dd1c78e1d59141968d1b395c667df0ab0daabb65"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ibmswtpm2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98599, "scanner": "repobility-docker", "fingerprint": "dc66f0cd986da562603c60d5adb34009510682086a242cb45be72c3c150ee492", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc66f0cd986da562603c60d5adb34009510682086a242cb45be72c3c150ee492"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ibmswtpm2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98598, "scanner": "repobility-docker", "fingerprint": "61de644236e0c517a818b40ff1972e9f09a119f0f5a97ad72c434bc481e43ea2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|61de644236e0c517a818b40ff1972e9f09a119f0f5a97ad72c434bc481e43ea2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hyperium/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98597, "scanner": "repobility-docker", "fingerprint": "c897df6d3ed2ba4b734d36b501745c567c29cbe0f9f94114baf72a92e5de8a69", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c897df6d3ed2ba4b734d36b501745c567c29cbe0f9f94114baf72a92e5de8a69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hyperium/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98596, "scanner": "repobility-docker", "fingerprint": "b24b2fcfcb1df2a29bd7db4835021aaacc77af0032d2b91b24cc7ac02b5110c8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b24b2fcfcb1df2a29bd7db4835021aaacc77af0032d2b91b24cc7ac02b5110c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hwloc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98593, "scanner": "repobility-docker", "fingerprint": "fdffbe48247367ea061bb845e26184f1d3d116a1951b330520ed2cf50d90d73c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fdffbe48247367ea061bb845e26184f1d3d116a1951b330520ed2cf50d90d73c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hwloc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98592, "scanner": "repobility-docker", "fingerprint": "d7d23ccb7276e4bf7192758c7b77e9ab944156f554f24cdbdcd26f850c4451af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7d23ccb7276e4bf7192758c7b77e9ab944156f554f24cdbdcd26f850c4451af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hunspell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98589, "scanner": "repobility-docker", "fingerprint": "4e62e25751a75ef64cd1d8884903f53204c81d32f37cecc5270166586ec429c2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e62e25751a75ef64cd1d8884903f53204c81d32f37cecc5270166586ec429c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hunspell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98588, "scanner": "repobility-docker", "fingerprint": "c7b4f066e7c1a783659c7d6981ed458fff449b1fa018ae071a0292c988b80e1c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7b4f066e7c1a783659c7d6981ed458fff449b1fa018ae071a0292c988b80e1c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hugo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98587, "scanner": "repobility-docker", "fingerprint": "7ae9381cce88dbf52a707c0defdeba0b7f41201192535089e762a5b0c5badf64", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ae9381cce88dbf52a707c0defdeba0b7f41201192535089e762a5b0c5badf64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98586, "scanner": "repobility-docker", "fingerprint": "2465a4d4cf2631ceb1bbd866b2d4b161d3a5d74d088683209f976c4125a911a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2465a4d4cf2631ceb1bbd866b2d4b161d3a5d74d088683209f976c4125a911a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpretty/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98585, "scanner": "repobility-docker", "fingerprint": "8bab76bc54217d1425d1c23b29bf3c71d4e0eb20abe35ffb5f524789cb30842f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bab76bc54217d1425d1c23b29bf3c71d4e0eb20abe35ffb5f524789cb30842f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpretty/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98584, "scanner": "repobility-docker", "fingerprint": "5ec6e987afb0d7aae5b8bc3f468fe6cab378fb10f06069f6bcf02333cb8eee3f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ec6e987afb0d7aae5b8bc3f468fe6cab378fb10f06069f6bcf02333cb8eee3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httplib2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98580, "scanner": "repobility-docker", "fingerprint": "0678ba4488d6891d14cc0da8387ccd3b8f01c202cc820466a11eb2357d2dddab", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0678ba4488d6891d14cc0da8387ccd3b8f01c202cc820466a11eb2357d2dddab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httplib2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98579, "scanner": "repobility-docker", "fingerprint": "522403ca95b5b80fad409477226254507cece7caf3f8b55d9302929c59faf702", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|522403ca95b5b80fad409477226254507cece7caf3f8b55d9302929c59faf702"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcore/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98578, "scanner": "repobility-docker", "fingerprint": "9e9e5208514d0f3798403f341177e1519a58fd4fd5d615734937738ceb4af9ea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e9e5208514d0f3798403f341177e1519a58fd4fd5d615734937738ceb4af9ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcore/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98577, "scanner": "repobility-docker", "fingerprint": "078991a87c36cd04faae899fc806de2ba1606289bd290a8db02b02163739fc86", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|078991a87c36cd04faae899fc806de2ba1606289bd290a8db02b02163739fc86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcomponents-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98576, "scanner": "repobility-docker", "fingerprint": "ff4f1cc2a122672a723c92c9fc416eb9e731759107338f6035b810bf4320fae6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff4f1cc2a122672a723c92c9fc416eb9e731759107338f6035b810bf4320fae6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcomponents-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98575, "scanner": "repobility-docker", "fingerprint": "1171a4669cdfcf03b4952239b3c595227612b1f1a2f9901ee67ae369525f891f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1171a4669cdfcf03b4952239b3c595227612b1f1a2f9901ee67ae369525f891f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcomponents-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98574, "scanner": "repobility-docker", "fingerprint": "be2e2aab2fe18e1d9f404e26570312e407cc46c4234c6061344366109a1ca105", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be2e2aab2fe18e1d9f404e26570312e407cc46c4234c6061344366109a1ca105"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpcomponents-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98573, "scanner": "repobility-docker", "fingerprint": "066a5e41893f691779a361e01a80f727d4a54ac2b0c63c0ff2a8bed3c80fb5ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|066a5e41893f691779a361e01a80f727d4a54ac2b0c63c0ff2a8bed3c80fb5ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httparse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98572, "scanner": "repobility-docker", "fingerprint": "f73c887ad202d28ea74a7e96a5a2d3549bc27e104d7545505eb7c34fddc4091e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f73c887ad202d28ea74a7e96a5a2d3549bc27e104d7545505eb7c34fddc4091e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httparse/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98571, "scanner": "repobility-docker", "fingerprint": "8548bc854a2e29cf1f210206a5a5514b1c572160ce21128b2bf2cb1c36997afe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8548bc854a2e29cf1f210206a5a5514b1c572160ce21128b2bf2cb1c36997afe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-pattern-matcher/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98568, "scanner": "repobility-docker", "fingerprint": "17d8b14db75d11b0a856228fe0c7c8bbcf68f9e2d69859a2361e2fa8bb995cbe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17d8b14db75d11b0a856228fe0c7c8bbcf68f9e2d69859a2361e2fa8bb995cbe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98565, "scanner": "repobility-docker", "fingerprint": "be4a339e059708e1c58f041ea982051480506fcbae9587bf85dfe31a1823af39", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be4a339e059708e1c58f041ea982051480506fcbae9587bf85dfe31a1823af39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98564, "scanner": "repobility-docker", "fingerprint": "6e5b4aaa53b635d4e08225020161e98f48f60054798ffaac222e3427c3662f38", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e5b4aaa53b635d4e08225020161e98f48f60054798ffaac222e3427c3662f38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htslib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98561, "scanner": "repobility-docker", "fingerprint": "770bb6bcb196de640430f964a8ed139232e85dfa0172c66d59fafc44672e7014", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|770bb6bcb196de640430f964a8ed139232e85dfa0172c66d59fafc44672e7014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htslib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98560, "scanner": "repobility-docker", "fingerprint": "d14c4cfc9f03ac0c9510ac82adb7a4610024c9c244fe64e52e557464db513c82", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d14c4cfc9f03ac0c9510ac82adb7a4610024c9c244fe64e52e557464db513c82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htmlunit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98558, "scanner": "repobility-docker", "fingerprint": "c5ef6a3389e5f9517ef65228b7440f77f2401524458bde129d6a71e50be4ee52", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5ef6a3389e5f9517ef65228b7440f77f2401524458bde129d6a71e50be4ee52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htmlunit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98557, "scanner": "repobility-docker", "fingerprint": "0cbeccc8aaa98540b86c475c8f870db4d5f2284db5b70c54de93fd1c4d67b383", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cbeccc8aaa98540b86c475c8f870db4d5f2284db5b70c54de93fd1c4d67b383"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/html5lib-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98556, "scanner": "repobility-docker", "fingerprint": "4194bfec93d72b6a0a9226e13fe2f9468f3a923b314046775d4fa93f16638076", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4194bfec93d72b6a0a9226e13fe2f9468f3a923b314046775d4fa93f16638076"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/html5lib-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98555, "scanner": "repobility-docker", "fingerprint": "0e70d08d71e13223efdcd11d08fb0607f615b66030200ba3fcc8beb904aea32d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e70d08d71e13223efdcd11d08fb0607f615b66030200ba3fcc8beb904aea32d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/html2text/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98554, "scanner": "repobility-docker", "fingerprint": "06b830f2629ed8db28df8e61f2cf36f45a632bcb921fee90a43e8cc0eb5f3c2a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|06b830f2629ed8db28df8e61f2cf36f45a632bcb921fee90a43e8cc0eb5f3c2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/html2text/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98553, "scanner": "repobility-docker", "fingerprint": "1b195028e027b562dc661614f301e7a40b0262bdd15324bd48abcc858ddb2083", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b195028e027b562dc661614f301e7a40b0262bdd15324bd48abcc858ddb2083"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hsqldb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98552, "scanner": "repobility-docker", "fingerprint": "5a0519a052edf848c5068baeb735bf803b9573e51c64f7970b57ee533b269b14", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a0519a052edf848c5068baeb735bf803b9573e51c64f7970b57ee533b269b14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hsqldb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98551, "scanner": "repobility-docker", "fingerprint": "543c637a5ed7c91c3c7b5570d12920a597a39210cd58c663b3d875a772509021", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|543c637a5ed7c91c3c7b5570d12920a597a39210cd58c663b3d875a772509021"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98546, "scanner": "repobility-docker", "fingerprint": "84ee35c8e6232ecb1f138bfbc43fba0c82902e8ca75917c95066bd1fe62a1522", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84ee35c8e6232ecb1f138bfbc43fba0c82902e8ca75917c95066bd1fe62a1522"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98545, "scanner": "repobility-docker", "fingerprint": "efa51faef20fdf8f4861ba239264bf9df6c127a0b8f6ad7fc271237e281f25a3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|efa51faef20fdf8f4861ba239264bf9df6c127a0b8f6ad7fc271237e281f25a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hostap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98542, "scanner": "repobility-docker", "fingerprint": "721f410efe5141fabd4d0a451fbedd2fc762c1938484d6773a81cc036ea5ae83", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|721f410efe5141fabd4d0a451fbedd2fc762c1938484d6773a81cc036ea5ae83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hostap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98541, "scanner": "repobility-docker", "fingerprint": "a33bea2b9ec07f316f65ef2accc651367155ea12650e3504d6b36e7a7defb9af", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a33bea2b9ec07f316f65ef2accc651367155ea12650e3504d6b36e7a7defb9af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hoextdown/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98538, "scanner": "repobility-docker", "fingerprint": "5ed5af04bc7a4219db1541589f7534a158aea8d807c9f25888c2a087105751c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ed5af04bc7a4219db1541589f7534a158aea8d807c9f25888c2a087105751c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hoextdown/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98537, "scanner": "repobility-docker", "fingerprint": "083942dc3c4035bf64247092d8762b968c471b18e6580b39fb3e0a7bdc631ce3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|083942dc3c4035bf64247092d8762b968c471b18e6580b39fb3e0a7bdc631ce3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hive/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98536, "scanner": "repobility-docker", "fingerprint": "e0e8d0ea94bdcf9c9cc8ed9bb481710aae1fc2cf6e62dd3afab1515b98f365c6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0e8d0ea94bdcf9c9cc8ed9bb481710aae1fc2cf6e62dd3afab1515b98f365c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hiredis-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98535, "scanner": "repobility-docker", "fingerprint": "b4fdabb69cbe63a270f695b482d9cec1aaacfe08db91cbde2541edc4d3323cf9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4fdabb69cbe63a270f695b482d9cec1aaacfe08db91cbde2541edc4d3323cf9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hiredis-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98534, "scanner": "repobility-docker", "fingerprint": "638a5c9732b8ee2d728479c8f2ba13259ace679bfccf762c938d1b028666ed55", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|638a5c9732b8ee2d728479c8f2ba13259ace679bfccf762c938d1b028666ed55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hiredis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98533, "scanner": "repobility-docker", "fingerprint": "2df6ce8b2971a52bad6ba865725f2de527844ce51eebe6f0ed7c9ed0f0783bb3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2df6ce8b2971a52bad6ba865725f2de527844ce51eebe6f0ed7c9ed0f0783bb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hiredis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98532, "scanner": "repobility-docker", "fingerprint": "999ce468d0324dd905d43dd7111e9ce998e3685b4f2cce6b8d48fe472d33ad61", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|999ce468d0324dd905d43dd7111e9ce998e3685b4f2cce6b8d48fe472d33ad61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hikaricp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98529, "scanner": "repobility-docker", "fingerprint": "abc5ee70165a9bc0de1544cbf0b30ab80e883028cb83a0127f109bdf72283c98", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|abc5ee70165a9bc0de1544cbf0b30ab80e883028cb83a0127f109bdf72283c98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hikaricp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98528, "scanner": "repobility-docker", "fingerprint": "df22bb3f25ba7f83bbaa02ea0690e7d182e99ef482025ae1b6b6b56e62aa9a3f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df22bb3f25ba7f83bbaa02ea0690e7d182e99ef482025ae1b6b6b56e62aa9a3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/highwayhash/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98525, "scanner": "repobility-docker", "fingerprint": "d999e2455d032cd4715ee43632720d36a7a0af8e1c81648bdf83269f5bdb8fa1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d999e2455d032cd4715ee43632720d36a7a0af8e1c81648bdf83269f5bdb8fa1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/highwayhash/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98524, "scanner": "repobility-docker", "fingerprint": "70c3adacff6f79aa24be62570b5954040b2cef6ac38ed7836e5cec945b5f49e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|70c3adacff6f79aa24be62570b5954040b2cef6ac38ed7836e5cec945b5f49e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98521, "scanner": "repobility-docker", "fingerprint": "cf03e9290e36781c2ef279b41aee51ab99534564ed89e3e013f355885ba04d03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf03e9290e36781c2ef279b41aee51ab99534564ed89e3e013f355885ba04d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98520, "scanner": "repobility-docker", "fingerprint": "9c936663c14d93e66874719a1562c3192e98d0954558991c6d1659d029f7f74f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c936663c14d93e66874719a1562c3192e98d0954558991c6d1659d029f7f74f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-orm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98519, "scanner": "repobility-docker", "fingerprint": "9beb429c932fe4f0dcc7c1d03017179edbc6f063e902823fbaa42c39c9d3fb8c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9beb429c932fe4f0dcc7c1d03017179edbc6f063e902823fbaa42c39c9d3fb8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-orm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98518, "scanner": "repobility-docker", "fingerprint": "f028049911e79fbf418a431a1cb04146336e92afe9404556197c237be9d8e8e4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f028049911e79fbf418a431a1cb04146336e92afe9404556197c237be9d8e8e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hermes/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98515, "scanner": "repobility-docker", "fingerprint": "2c0d811caa6f74724d4d4c9345a77196bc05474a2bcc305d014305e8a10a0c8e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c0d811caa6f74724d4d4c9345a77196bc05474a2bcc305d014305e8a10a0c8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hermes/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98514, "scanner": "repobility-docker", "fingerprint": "1c040e07eafd5b9cd38a1c23374efdf55c305a8fe082279ff1aba920c8b8032f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c040e07eafd5b9cd38a1c23374efdf55c305a8fe082279ff1aba920c8b8032f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/helm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98513, "scanner": "repobility-docker", "fingerprint": "48bba4c9b0fbc7d318d07e81cf19a92c6e89c897b0ad3c6766c7f50f34ea752f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48bba4c9b0fbc7d318d07e81cf19a92c6e89c897b0ad3c6766c7f50f34ea752f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/helm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98512, "scanner": "repobility-docker", "fingerprint": "67b2c9535f001a5f23a9a11a9635b6c2af7a5345a6796fb14790341e2ea947c4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67b2c9535f001a5f23a9a11a9635b6c2af7a5345a6796fb14790341e2ea947c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdrhistogram/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98511, "scanner": "repobility-docker", "fingerprint": "ac5badfed70021e2d547980a6bd031bc09bec76e9462f59ceab67504b5160d29", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac5badfed70021e2d547980a6bd031bc09bec76e9462f59ceab67504b5160d29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdrhistogram/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98510, "scanner": "repobility-docker", "fingerprint": "4ce8c9de592518498e9439bef149671c8e6f195880a0145b8e20dc69e015bc5c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4ce8c9de592518498e9439bef149671c8e6f195880a0145b8e20dc69e015bc5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdf5/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98507, "scanner": "repobility-docker", "fingerprint": "dc0de3798e7ac5d2a611bf83d887ace9dfd357cf1506c0b7f65ccddd7135c283", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc0de3798e7ac5d2a611bf83d887ace9dfd357cf1506c0b7f65ccddd7135c283"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdf5/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98506, "scanner": "repobility-docker", "fingerprint": "e66c4205f01dc86a39278651e8cafb75f259b2bce86a5fe7c01d0969673118fa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e66c4205f01dc86a39278651e8cafb75f259b2bce86a5fe7c01d0969673118fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hcl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98505, "scanner": "repobility-docker", "fingerprint": "05e5bb16a5c35aff68157dcb22a0f4364c56fb4307a8ea38e59bae0b558f2dd6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|05e5bb16a5c35aff68157dcb22a0f4364c56fb4307a8ea38e59bae0b558f2dd6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hcl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98504, "scanner": "repobility-docker", "fingerprint": "41cd44d7b737852e81291062b8632ac08e32bbe48c07bd3e27b557cb454b1f75", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41cd44d7b737852e81291062b8632ac08e32bbe48c07bd3e27b557cb454b1f75"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/harfbuzz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98501, "scanner": "repobility-docker", "fingerprint": "e0cbfd38110ebd3605d625c7e3d7b072a142f9052a1620b6e290326cfaf4480c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0cbfd38110ebd3605d625c7e3d7b072a142f9052a1620b6e290326cfaf4480c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/harfbuzz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98500, "scanner": "repobility-docker", "fingerprint": "075e33e9b2d64f70c60f517861464fd8d9829965ba19c9f68a2f0ba0f54c5347", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|075e33e9b2d64f70c60f517861464fd8d9829965ba19c9f68a2f0ba0f54c5347"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/haproxy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98497, "scanner": "repobility-docker", "fingerprint": "a39be069912caefaa9898a2b955ad4f402141063b30e9f724de66298be957e12", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a39be069912caefaa9898a2b955ad4f402141063b30e9f724de66298be957e12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/haproxy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98496, "scanner": "repobility-docker", "fingerprint": "b65986f1dfcd4c76695ef454e0ffe0a3df966e0ad0101ecf52c4c581a750b5ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b65986f1dfcd4c76695ef454e0ffe0a3df966e0ad0101ecf52c4c581a750b5ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hamcrest/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98495, "scanner": "repobility-docker", "fingerprint": "c339a66214aa611f5016b77bf38064066ac8feb317572de8946b1337b77cf71d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c339a66214aa611f5016b77bf38064066ac8feb317572de8946b1337b77cf71d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hamcrest/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98494, "scanner": "repobility-docker", "fingerprint": "903b71ed17a6316e6b9ef871f332db4883893c991141c15a13ef8517348dfc70", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|903b71ed17a6316e6b9ef871f332db4883893c991141c15a13ef8517348dfc70"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/halide/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98491, "scanner": "repobility-docker", "fingerprint": "e241168f0d5c9ac3da8a34f3416eccd71b57402f12e61d2300eeaed32b66ca29", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e241168f0d5c9ac3da8a34f3416eccd71b57402f12e61d2300eeaed32b66ca29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hadoop/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98490, "scanner": "repobility-docker", "fingerprint": "3b07ad63bd4b37e7921db238d3bd1fd52d54b8c660b62ce2c7a9fd86f159e6c3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b07ad63bd4b37e7921db238d3bd1fd52d54b8c660b62ce2c7a9fd86f159e6c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hadoop/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98489, "scanner": "repobility-docker", "fingerprint": "992dea06e077f8acd5239ef639b98944bb7c93b55cd8157d83ac596f6f4673c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|992dea06e077f8acd5239ef639b98944bb7c93b55cd8157d83ac596f6f4673c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h5py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98486, "scanner": "repobility-docker", "fingerprint": "fb02fe84c86237c6ac0eb06ef041a05ebecdd1364fdd343c31f93180bd0029c2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb02fe84c86237c6ac0eb06ef041a05ebecdd1364fdd343c31f93180bd0029c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98483, "scanner": "repobility-docker", "fingerprint": "cd017e68816f46e6eec158a3ecfb88f7e175df029449dfcb3527edbe19f22cf1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd017e68816f46e6eec158a3ecfb88f7e175df029449dfcb3527edbe19f22cf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98482, "scanner": "repobility-docker", "fingerprint": "c1f2e14e448abf7b033ac1316a44ff4f085bf3441e5fe938a4dbec9b4c70dc9b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c1f2e14e448abf7b033ac1316a44ff4f085bf3441e5fe938a4dbec9b4c70dc9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2o/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98479, "scanner": "repobility-docker", "fingerprint": "716fe7e1504496685302196822a2d2699988c8cbd5334fe17a1e8d4b8d056562", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|716fe7e1504496685302196822a2d2699988c8cbd5334fe17a1e8d4b8d056562"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2o/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98478, "scanner": "repobility-docker", "fingerprint": "18ed630fbe05bad7b5ef83bf346fccb08cd25add9fa8e0a9b19492184e130693", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18ed630fbe05bad7b5ef83bf346fccb08cd25add9fa8e0a9b19492184e130693"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2database/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98477, "scanner": "repobility-docker", "fingerprint": "3623d8969e4965c22cb4944d0d999ec54ef5b9dc8562e38f5a75419d22a4b88a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3623d8969e4965c22cb4944d0d999ec54ef5b9dc8562e38f5a75419d22a4b88a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h11/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98476, "scanner": "repobility-docker", "fingerprint": "07aa940ca30a470eba2180c1bd7fc675a110d7f4ba03cb73f11672cf5b654dcd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07aa940ca30a470eba2180c1bd7fc675a110d7f4ba03cb73f11672cf5b654dcd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h11/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98475, "scanner": "repobility-docker", "fingerprint": "4ddbf4fa523c2a7b8f11ef75d086467c7cd90d6966fb635d51fb758fa3c3c774", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4ddbf4fa523c2a7b8f11ef75d086467c7cd90d6966fb635d51fb758fa3c3c774"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98472, "scanner": "repobility-docker", "fingerprint": "838440f5d610ffae3b4f57dca3c03f96668f624e3b4a29bde03f26bbab058101", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|838440f5d610ffae3b4f57dca3c03f96668f624e3b4a29bde03f26bbab058101"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gwt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98471, "scanner": "repobility-docker", "fingerprint": "d284ee771806cc26816df6f9e4cf4ee21bf04d0a4a3adaba41b896927e0032b7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d284ee771806cc26816df6f9e4cf4ee21bf04d0a4a3adaba41b896927e0032b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gunicorn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98470, "scanner": "repobility-docker", "fingerprint": "f0870e75d7bb134de548864cbd9f0f8566e26633134aa3dd49b866a184431e9a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0870e75d7bb134de548864cbd9f0f8566e26633134aa3dd49b866a184431e9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gunicorn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98469, "scanner": "repobility-docker", "fingerprint": "3a83a24b764c68dadf54a95075045e730ed549f89db62fb4310d1433dec1f27a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a83a24b764c68dadf54a95075045e730ed549f89db62fb4310d1433dec1f27a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guice/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98468, "scanner": "repobility-docker", "fingerprint": "10be2b5c84d435895b486f4ea447c9d3fbec6be2b99c8cc9e80e37f5208947fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10be2b5c84d435895b486f4ea447c9d3fbec6be2b99c8cc9e80e37f5208947fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guice/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98467, "scanner": "repobility-docker", "fingerprint": "05ca3dbff8bf22148a57afc2b9f9bb7f53c9d3e9de25522749f7b681402e95a5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|05ca3dbff8bf22148a57afc2b9f9bb7f53c9d3e9de25522749f7b681402e95a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guetzli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98464, "scanner": "repobility-docker", "fingerprint": "4be79852727cfdbb7c920cfd68083f99334d78e063a28acdaad820069356f2b9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4be79852727cfdbb7c920cfd68083f99334d78e063a28acdaad820069356f2b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guetzli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98463, "scanner": "repobility-docker", "fingerprint": "f810f309013ac5ab1da5e63aaee635de0fdfa338e6ff3d991e27f9a0451f2b83", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f810f309013ac5ab1da5e63aaee635de0fdfa338e6ff3d991e27f9a0451f2b83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guava/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98462, "scanner": "repobility-docker", "fingerprint": "b47054f4bcd834ccbf2685e2e3759a89e8fd933de153196e47cdc35e90fba2df", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b47054f4bcd834ccbf2685e2e3759a89e8fd933de153196e47cdc35e90fba2df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guava/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98461, "scanner": "repobility-docker", "fingerprint": "9b984c96c8fefd04f2d5bfd2afb92ae1651af04000273e7b5365d02a57248813", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b984c96c8fefd04f2d5bfd2afb92ae1651af04000273e7b5365d02a57248813"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gstreamer/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98458, "scanner": "repobility-docker", "fingerprint": "71c0f341171b14bb6492f9d2a3566aed9dedafbf89b3e52a8c212cf65dc996a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71c0f341171b14bb6492f9d2a3566aed9dedafbf89b3e52a8c212cf65dc996a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gstreamer/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98457, "scanner": "repobility-docker", "fingerprint": "96c1e788ca6e48b7fafa266c54eb77f2f80ba09ab070fd0e10f797599b74c9d0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96c1e788ca6e48b7fafa266c54eb77f2f80ba09ab070fd0e10f797599b74c9d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gss-ntlmssp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98454, "scanner": "repobility-docker", "fingerprint": "b84f71a0842dd8cf130b4ceea2926ad70be62cf5bcc990c48a0a79f12cb3fa47", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b84f71a0842dd8cf130b4ceea2926ad70be62cf5bcc990c48a0a79f12cb3fa47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gss-ntlmssp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98453, "scanner": "repobility-docker", "fingerprint": "9f4a8208e4ca30560300abb64b0819581dabac47ccfffce52284bc5127054aa3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f4a8208e4ca30560300abb64b0819581dabac47ccfffce52284bc5127054aa3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98450, "scanner": "repobility-docker", "fingerprint": "8339679272c2913e60d771c74988091363d82d54003f64d0604a77e8c1b56cda", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8339679272c2913e60d771c74988091363d82d54003f64d0604a77e8c1b56cda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98449, "scanner": "repobility-docker", "fingerprint": "17a78d72a707195c79a8d0b1e72208192b9867f11427b79e310e301a0c5b83d5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-swift:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17a78d72a707195c79a8d0b1e72208192b9867f11427b79e310e301a0c5b83d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-swift/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98446, "scanner": "repobility-docker", "fingerprint": "5e06100c20f6609d6cd85d5bb664ddd38c6a17c7a626cd4ce60b30fe97c98244", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e06100c20f6609d6cd85d5bb664ddd38c6a17c7a626cd4ce60b30fe97c98244"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-py/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98444, "scanner": "repobility-docker", "fingerprint": "d4d3aff2d05511b450b6dec9c202e78977cc55371523fb0ff5f0a350e343dd16", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4d3aff2d05511b450b6dec9c202e78977cc55371523fb0ff5f0a350e343dd16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-py/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98443, "scanner": "repobility-docker", "fingerprint": "2756a59a90489b4210f08e61efeca2ff1c7eedc670eae461e39a107e858a4a5f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04@sha256:d34b94e3cf868e49d2928c76ddba41fd4154907a1a381b3a263fafffb7c3dce0", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2756a59a90489b4210f08e61efeca2ff1c7eedc670eae461e39a107e858a4a5f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-httpjson-transcoding/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98440, "scanner": "repobility-docker", "fingerprint": "2607073953322573cead2ccc5766a958348a12da697a388e60eabcbfacba7c2e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2607073953322573cead2ccc5766a958348a12da697a388e60eabcbfacba7c2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98439, "scanner": "repobility-docker", "fingerprint": "6881937ae1b87c9a93347235a87ce0bb109362551b0c98eaea8cdc3ca6b3bfb6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6881937ae1b87c9a93347235a87ce0bb109362551b0c98eaea8cdc3ca6b3bfb6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98438, "scanner": "repobility-docker", "fingerprint": "64be05342b0dfe22b0990ec3b171ad1238240000d19aa9e2f2314a7534cc0ab5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64be05342b0dfe22b0990ec3b171ad1238240000d19aa9e2f2314a7534cc0ab5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98437, "scanner": "repobility-docker", "fingerprint": "9d400624e436eb1359c077b004a0869c82e41a7681b9ea1b6dba30ac892e796b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d400624e436eb1359c077b004a0869c82e41a7681b9ea1b6dba30ac892e796b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98436, "scanner": "repobility-docker", "fingerprint": "7e9d2fcf6306a6b8bad5d35021822b8b1b30a51c7e5453fcf5ffa55e73bd8d15", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e9d2fcf6306a6b8bad5d35021822b8b1b30a51c7e5453fcf5ffa55e73bd8d15"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/groovy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98435, "scanner": "repobility-docker", "fingerprint": "7735c13fd2e55f95bec933f3e94e1fc9ce5cf21844e0994e2329f519b718a457", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7735c13fd2e55f95bec933f3e94e1fc9ce5cf21844e0994e2329f519b718a457"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/groovy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98434, "scanner": "repobility-docker", "fingerprint": "a3eb6ed2ae14dfc29eabda00ca8a668d499358dd167e9efda969ddc04ade6531", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a3eb6ed2ae14dfc29eabda00ca8a668d499358dd167e9efda969ddc04ade6531"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grok/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98433, "scanner": "repobility-docker", "fingerprint": "890bd1bbff916dc45c02bf83104742bdbe1ac2aa5ff7cd80e12e4117d57972b9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|890bd1bbff916dc45c02bf83104742bdbe1ac2aa5ff7cd80e12e4117d57972b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grok/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98432, "scanner": "repobility-docker", "fingerprint": "bf46fa41a90a473c11017f23b08578ebde0f923283c3b6e2bbfddcaa2e87be5a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf46fa41a90a473c11017f23b08578ebde0f923283c3b6e2bbfddcaa2e87be5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/greenmail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98431, "scanner": "repobility-docker", "fingerprint": "c4bb107d39f3847ef2ae27d1d62e3724f671e3f1a5a62cd241a0afe806c7120f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c4bb107d39f3847ef2ae27d1d62e3724f671e3f1a5a62cd241a0afe806c7120f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/greenmail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98430, "scanner": "repobility-docker", "fingerprint": "856e27ec78082f621f69eff520c4dc012b5115af2a19ba6090d853db32911cbe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|856e27ec78082f621f69eff520c4dc012b5115af2a19ba6090d853db32911cbe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphql-java/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98429, "scanner": "repobility-docker", "fingerprint": "24f782fa771879fa589202ea7c23f67371b37431523d93a7985a8ae31b538135", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|24f782fa771879fa589202ea7c23f67371b37431523d93a7985a8ae31b538135"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphql-java/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98428, "scanner": "repobility-docker", "fingerprint": "b77b350f68f7baa14e5ddc52e7a38dd32ad08a491940ddf936027efd1df06a4f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b77b350f68f7baa14e5ddc52e7a38dd32ad08a491940ddf936027efd1df06a4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98423, "scanner": "repobility-docker", "fingerprint": "ce6e99f252c48a6f1ea6591a7650773354ed3b90c2e7abd43b227f3f57f0244b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce6e99f252c48a6f1ea6591a7650773354ed3b90c2e7abd43b227f3f57f0244b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98422, "scanner": "repobility-docker", "fingerprint": "fe3d1354754d7d94d4967cca51a540acb1e7df3b10c6c74328d1dac03bfbab43", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fe3d1354754d7d94d4967cca51a540acb1e7df3b10c6c74328d1dac03bfbab43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpsd/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98419, "scanner": "repobility-docker", "fingerprint": "5f37e58ee528135985b8618a0a0c0d0b08cb0a748da67426eef47e0929b5fe52", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f37e58ee528135985b8618a0a0c0d0b08cb0a748da67426eef47e0929b5fe52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpsd/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98418, "scanner": "repobility-docker", "fingerprint": "e35b5edcd9904eebbbf0fb65b0c53dac98602798c8d440ec81633a7b718e5cd5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e35b5edcd9904eebbbf0fb65b0c53dac98602798c8d440ec81633a7b718e5cd5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gprof2dot/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98417, "scanner": "repobility-docker", "fingerprint": "cc44de29785d0dcc74e7109355c8acd2f15c8e2e7756069a1a569b14db4a10aa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cc44de29785d0dcc74e7109355c8acd2f15c8e2e7756069a1a569b14db4a10aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gprof2dot/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98416, "scanner": "repobility-docker", "fingerprint": "def94e5a8b667ff854254dc39bec4c9199479db818aceacf9c57a4d7b7d60d4d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|def94e5a8b667ff854254dc39bec4c9199479db818aceacf9c57a4d7b7d60d4d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98413, "scanner": "repobility-docker", "fingerprint": "89f96debe606e3eae816e7835cb757967b827af0ff115b0a75c77dff943b8a9e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|89f96debe606e3eae816e7835cb757967b827af0ff115b0a75c77dff943b8a9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98412, "scanner": "repobility-docker", "fingerprint": "cf2c4bc097f895ce6085a96e2bab1c3b851cd9c3df04eb444869604290b79778", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf2c4bc097f895ce6085a96e2bab1c3b851cd9c3df04eb444869604290b79778"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gosnmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98411, "scanner": "repobility-docker", "fingerprint": "bc0a37cf20776fa11b6603735ecb398a3f38aa5cd705d34245931e940726d858", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc0a37cf20776fa11b6603735ecb398a3f38aa5cd705d34245931e940726d858"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gosnmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98410, "scanner": "repobility-docker", "fingerprint": "3dae9cf719de7f154f5fc9cfdc6f26ed49cd0491fa111cb4a6ef52b035a00d90", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dae9cf719de7f154f5fc9cfdc6f26ed49cd0491fa111cb4a6ef52b035a00d90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gopsutil/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98409, "scanner": "repobility-docker", "fingerprint": "a2bead4f86fc19c4ce32e756aa41f6524cf7813a4028bd627c242e8ad6ca5b68", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2bead4f86fc19c4ce32e756aa41f6524cf7813a4028bd627c242e8ad6ca5b68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gopsutil/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98408, "scanner": "repobility-docker", "fingerprint": "d5c1ec3cb692322f35cb723d06a36a9e6e826e95b20882a55323614ee1d4cdd4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5c1ec3cb692322f35cb723d06a36a9e6e826e95b20882a55323614ee1d4cdd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gopacket/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98407, "scanner": "repobility-docker", "fingerprint": "7e1adcaa0c11b9f1a0bbfed813e2cfe63795556b5319f12b5e066fe2a372f5cd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e1adcaa0c11b9f1a0bbfed813e2cfe63795556b5319f12b5e066fe2a372f5cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gonids/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98406, "scanner": "repobility-docker", "fingerprint": "e926fa9c4cac036234364acc54b501769e48fdacbb0c5f769597f671c2098c94", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e926fa9c4cac036234364acc54b501769e48fdacbb0c5f769597f671c2098c94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gonids/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98405, "scanner": "repobility-docker", "fingerprint": "8f54bdc4f81f71d3c1926eb7dceac6c929794464ad88a11ac2032900b02a9910", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f54bdc4f81f71d3c1926eb7dceac6c929794464ad88a11ac2032900b02a9910"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gonids/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98404, "scanner": "repobility-docker", "fingerprint": "1ed1673ac20de5c9d7dc90dd018d501db72fc26719452d9e8f1a02629096e4ee", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ed1673ac20de5c9d7dc90dd018d501db72fc26719452d9e8f1a02629096e4ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang-protobuf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98403, "scanner": "repobility-docker", "fingerprint": "8dd3de8a7949f2a305baa000768dac9d313dc8fbdb0cda6d27c03a5f4312c2f0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8dd3de8a7949f2a305baa000768dac9d313dc8fbdb0cda6d27c03a5f4312c2f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang-protobuf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98402, "scanner": "repobility-docker", "fingerprint": "1b676d336cc4829667869f81a95eb4d75e4c4d50f2578efa266b09e0f6f8f247", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b676d336cc4829667869f81a95eb4d75e4c4d50f2578efa266b09e0f6f8f247"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang-appengine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98401, "scanner": "repobility-docker", "fingerprint": "3a56464b53a8985f854fab47b137e2b3b6fd5914163ea1daa9a4ad43c6c080a2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a56464b53a8985f854fab47b137e2b3b6fd5914163ea1daa9a4ad43c6c080a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang-appengine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98400, "scanner": "repobility-docker", "fingerprint": "2fa025e1186a957e3fc4038bc91fbe2a74f369b86f3e8d8c7de96333f3f04a51", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2fa025e1186a957e3fc4038bc91fbe2a74f369b86f3e8d8c7de96333f3f04a51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98399, "scanner": "repobility-docker", "fingerprint": "a5505e739a3ecc4cad33b364e129757be26143e4b389926722d3963177d4e765", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5505e739a3ecc4cad33b364e129757be26143e4b389926722d3963177d4e765"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98398, "scanner": "repobility-docker", "fingerprint": "54dc128aa2b7343d426f537a933fdbab225e32450c14afd9a8a033287d49e284", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54dc128aa2b7343d426f537a933fdbab225e32450c14afd9a8a033287d49e284"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/goipp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98397, "scanner": "repobility-docker", "fingerprint": "464c7a34abbd0d04f75fb276b3951aa1044cfdd7ad46d53777f1b43f21d81aef", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|464c7a34abbd0d04f75fb276b3951aa1044cfdd7ad46d53777f1b43f21d81aef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/goipp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98396, "scanner": "repobility-docker", "fingerprint": "703b5aa9f54cbcbd7c3d72023edbb6683d5f6d87bfa6eeaaa586d8d4d2796788", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|703b5aa9f54cbcbd7c3d72023edbb6683d5f6d87bfa6eeaaa586d8d4d2796788"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gogo-protobuf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98395, "scanner": "repobility-docker", "fingerprint": "d8418ed2b217dad35dfc088aceba33051ea74e59fe90f2ddb55b39cb5c2ba8b6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8418ed2b217dad35dfc088aceba33051ea74e59fe90f2ddb55b39cb5c2ba8b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gogo-protobuf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98394, "scanner": "repobility-docker", "fingerprint": "86089e2e37571566517b303cad7e60cc30fed4b89112ad22b4fea042ec570781", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|86089e2e37571566517b303cad7e60cc30fed4b89112ad22b4fea042ec570781"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gobgp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98393, "scanner": "repobility-docker", "fingerprint": "6d9b0f8db5356d56fda04b58afd4eab1d657afc19fa0d3e1c2f5d3bbe5aff223", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d9b0f8db5356d56fda04b58afd4eab1d657afc19fa0d3e1c2f5d3bbe5aff223"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gobgp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98392, "scanner": "repobility-docker", "fingerprint": "c2abf52a72c208552622f05d0655363bdd08045ca788ffab1067e7ed8abe3c34", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2abf52a72c208552622f05d0655363bdd08045ca788ffab1067e7ed8abe3c34"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-yaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98391, "scanner": "repobility-docker", "fingerprint": "3adc3c815bca7538b4d72b07becec928b8fd8c8286206af80622a6a3927ea2f7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3adc3c815bca7538b4d72b07becec928b8fd8c8286206af80622a6a3927ea2f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-yaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98390, "scanner": "repobility-docker", "fingerprint": "16f51dfca2afce9dfbb2c95ac223a2c415d61e084998428a1f7d9fad9d3303de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16f51dfca2afce9dfbb2c95ac223a2c415d61e084998428a1f7d9fad9d3303de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-toml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98387, "scanner": "repobility-docker", "fingerprint": "78c6563318076ef01889c08d243d1c4cce53f6608446eb083f26f09f8a64679b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78c6563318076ef01889c08d243d1c4cce53f6608446eb083f26f09f8a64679b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-toml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98386, "scanner": "repobility-docker", "fingerprint": "7969bf06658e4adfc2e453ce1d3358b1b57f9117318d9decd5347f75550db213", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7969bf06658e4adfc2e453ce1d3358b1b57f9117318d9decd5347f75550db213"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-sqlite3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98385, "scanner": "repobility-docker", "fingerprint": "fda52754a5809b09dfe37150d70edcd067c6f9db69a40f6b1d38edd13658ee1e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fda52754a5809b09dfe37150d70edcd067c6f9db69a40f6b1d38edd13658ee1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-sqlite3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98384, "scanner": "repobility-docker", "fingerprint": "710929848e1ff12269f160accbb2c2b37f7b1082cc8dfcdef51f742fd0b0e9dc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|710929848e1ff12269f160accbb2c2b37f7b1082cc8dfcdef51f742fd0b0e9dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-snappy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98383, "scanner": "repobility-docker", "fingerprint": "6b6bfd727b968e16cc749458c82fe7d396c16f51f0c65f0eb7f9aa1d374aed4a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b6bfd727b968e16cc749458c82fe7d396c16f51f0c65f0eb7f9aa1d374aed4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-snappy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98382, "scanner": "repobility-docker", "fingerprint": "43e1933e03006b20763315f2f315f54caca05672091fead7e4743d36ec40a4a5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43e1933e03006b20763315f2f315f54caca05672091fead7e4743d36ec40a4a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-shlex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98381, "scanner": "repobility-docker", "fingerprint": "860e9f7de8b3a711b2d4ded6600c489d35f94ca34b6ca3b902713fa6f7133a74", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|860e9f7de8b3a711b2d4ded6600c489d35f94ca34b6ca3b902713fa6f7133a74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-shlex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98380, "scanner": "repobility-docker", "fingerprint": "41b2bad44c29cab78ee8e31b5fc593a7813504f248990bd3159fbaac855d7c86", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41b2bad44c29cab78ee8e31b5fc593a7813504f248990bd3159fbaac855d7c86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-sftp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98379, "scanner": "repobility-docker", "fingerprint": "3b624401c3ecc9f3ca2b6533f46cd300e54f91c5c2773a42b9d5a0e9c92cfd60", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b624401c3ecc9f3ca2b6533f46cd300e54f91c5c2773a42b9d5a0e9c92cfd60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-sftp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98378, "scanner": "repobility-docker", "fingerprint": "d0d18d85ea8f8817f123a6a5bc6e13cdddf385e2f82fc5b9be2731a703b3af6a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0d18d85ea8f8817f123a6a5bc6e13cdddf385e2f82fc5b9be2731a703b3af6a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-redis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98377, "scanner": "repobility-docker", "fingerprint": "f19bde144cc6000834f65cd13e6412c43fc88c19e07d505e974024dd00b0ea3e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f19bde144cc6000834f65cd13e6412c43fc88c19e07d505e974024dd00b0ea3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-redis/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98376, "scanner": "repobility-docker", "fingerprint": "2bccd62e87a277651e331289954ec60b0525214b7c66510dc495d05b775d603c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2bccd62e87a277651e331289954ec60b0525214b7c66510dc495d05b775d603c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-readline/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98375, "scanner": "repobility-docker", "fingerprint": "cd7cae2ef62a3bce24bf451946c351dc45c8813bf779c75c81f749974b743a86", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd7cae2ef62a3bce24bf451946c351dc45c8813bf779c75c81f749974b743a86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-readline/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98374, "scanner": "repobility-docker", "fingerprint": "9db09b9861bd65df8ddd7d357242db28ab2808646ca2696c1536a3e45b977113", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9db09b9861bd65df8ddd7d357242db28ab2808646ca2696c1536a3e45b977113"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-pprof/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98373, "scanner": "repobility-docker", "fingerprint": "34951992c8e26602229737af14d61e1a5e56567de236126c60b505e9cb7c49bb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|34951992c8e26602229737af14d61e1a5e56567de236126c60b505e9cb7c49bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-pprof/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98372, "scanner": "repobility-docker", "fingerprint": "f9b6d5355526162f4f39aec53aceff13acf1dff89ccbc72f4625be2449aec2f3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f9b6d5355526162f4f39aec53aceff13acf1dff89ccbc72f4625be2449aec2f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ole/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98371, "scanner": "repobility-docker", "fingerprint": "2642e4954d6e45c5a7508cd101b5acc5ff5b92d0510979af17581da036ca5f2f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2642e4954d6e45c5a7508cd101b5acc5ff5b92d0510979af17581da036ca5f2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ole/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98370, "scanner": "repobility-docker", "fingerprint": "71074eb86257931cc762fa71d528f4b4dae7a1df9a23fe4fd7d04e9845afabe1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71074eb86257931cc762fa71d528f4b4dae7a1df9a23fe4fd7d04e9845afabe1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ldap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98369, "scanner": "repobility-docker", "fingerprint": "b95de8178c9e755aa1754b6963a81a4dec59bcb4727c33f904f520ca09ca38c1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b95de8178c9e755aa1754b6963a81a4dec59bcb4727c33f904f520ca09ca38c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ldap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98368, "scanner": "repobility-docker", "fingerprint": "20f5a875100fd783fa2ea65d66e750ae83a0de25123785275350e247cd399e48", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|20f5a875100fd783fa2ea65d66e750ae83a0de25123785275350e247cd399e48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-json-iterator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98367, "scanner": "repobility-docker", "fingerprint": "0e53dee69d315591b68f6fc9079f966e5dc62f00d0364e982a204ce959f18209", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e53dee69d315591b68f6fc9079f966e5dc62f00d0364e982a204ce959f18209"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-humanize/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98366, "scanner": "repobility-docker", "fingerprint": "ef1968f075560db963f8573a94adb2790d2501f3f05159baf473085f807ba40d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef1968f075560db963f8573a94adb2790d2501f3f05159baf473085f807ba40d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-humanize/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98365, "scanner": "repobility-docker", "fingerprint": "9be70e31311bbd68b977aa0076d92d8c7572c3f3b72ed2b9189737868055cd9b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9be70e31311bbd68b977aa0076d92d8c7572c3f3b72ed2b9189737868055cd9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-git/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98364, "scanner": "repobility-docker", "fingerprint": "84001a80525f637ddb28c7766594ccbc48f9ef5af6ae7bf31b936b5ba20c784c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84001a80525f637ddb28c7766594ccbc48f9ef5af6ae7bf31b936b5ba20c784c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-git/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98363, "scanner": "repobility-docker", "fingerprint": "706522857b98328543bf64271d922f24c487cf537b934dd2177e9afd7cafce91", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|706522857b98328543bf64271d922f24c487cf537b934dd2177e9afd7cafce91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ethereum/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98362, "scanner": "repobility-docker", "fingerprint": "11e09c0996a0f7796b3c6d462fe9d660709aaf4f7b24035f17c5fa0161fd8f8e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11e09c0996a0f7796b3c6d462fe9d660709aaf4f7b24035f17c5fa0161fd8f8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-ethereum/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98361, "scanner": "repobility-docker", "fingerprint": "b92875026507dd24433dd8b4d3750af183c8a6a19208643cd4f84d2bae7a85a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b92875026507dd24433dd8b4d3750af183c8a6a19208643cd4f84d2bae7a85a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98360, "scanner": "repobility-docker", "fingerprint": "258b5e374eb62a9eb41565431b1d211ae6cc081567e324e0b7eb8f36c1df92c8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|258b5e374eb62a9eb41565431b1d211ae6cc081567e324e0b7eb8f36c1df92c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98359, "scanner": "repobility-docker", "fingerprint": "ef7cebe53950286031037ce80d019853cc70e37adeae0aa3db1b1f6c7a1bcbc7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef7cebe53950286031037ce80d019853cc70e37adeae0aa3db1b1f6c7a1bcbc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-dhcp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98358, "scanner": "repobility-docker", "fingerprint": "a7861d42812a3015cf79fcf4f89bc0bcb8cae0084a9231d583dd0288c307fdf5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7861d42812a3015cf79fcf4f89bc0bcb8cae0084a9231d583dd0288c307fdf5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-dhcp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98357, "scanner": "repobility-docker", "fingerprint": "c15853f7ab401693ac0b67f101fd183bb612f49df0ebd1a85e50677b54404f1c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c15853f7ab401693ac0b67f101fd183bb612f49df0ebd1a85e50677b54404f1c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-coredns/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98356, "scanner": "repobility-docker", "fingerprint": "de3bb54a24badf5f20802d56b5f6c621478f346fb0a79ba3c0c7640ef7bd47f9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de3bb54a24badf5f20802d56b5f6c621478f346fb0a79ba3c0c7640ef7bd47f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-containerregistry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98355, "scanner": "repobility-docker", "fingerprint": "dac51f1847989de31f62133eec15455d7ec6c6d43a6e15898cb7a144069f9d03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dac51f1847989de31f62133eec15455d7ec6c6d43a6e15898cb7a144069f9d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-containerregistry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98354, "scanner": "repobility-docker", "fingerprint": "434420f611e34bb46d6ef7873fe94c5e5ae5826fbdf468fdcee7dbe2febb4242", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|434420f611e34bb46d6ef7873fe94c5e5ae5826fbdf468fdcee7dbe2febb4242"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-coap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98353, "scanner": "repobility-docker", "fingerprint": "5371bc3d00003ef25116a9b90807fc2faff78fa53d4013f6ea0ff52a114aaabf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5371bc3d00003ef25116a9b90807fc2faff78fa53d4013f6ea0ff52a114aaabf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-coap/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98352, "scanner": "repobility-docker", "fingerprint": "347b2bc73185d8a234df6de3b18af40164f125586f1fb2614ff9076528b20282", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|347b2bc73185d8a234df6de3b18af40164f125586f1fb2614ff9076528b20282"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-cmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98351, "scanner": "repobility-docker", "fingerprint": "0f8b3e128da003672e9837580f311f018165026a255ec8352be1504fab0a5bab", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f8b3e128da003672e9837580f311f018165026a255ec8352be1504fab0a5bab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-cmp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98350, "scanner": "repobility-docker", "fingerprint": "25915d4101a52ec4d3cd12a0148d37016893a0cafedcacaf5046b011837eef3a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25915d4101a52ec4d3cd12a0148d37016893a0cafedcacaf5046b011837eef3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-attestation/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98349, "scanner": "repobility-docker", "fingerprint": "b490ff5b21c660b901e0c0a9223c3da531c195779226267250927adfb0e704c0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b490ff5b21c660b901e0c0a9223c3da531c195779226267250927adfb0e704c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-attestation/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98348, "scanner": "repobility-docker", "fingerprint": "6ad435a1ef967ac7a881cb816720b4e764a1539250bc53a707089bc1e86eabaf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ad435a1ef967ac7a881cb816720b4e764a1539250bc53a707089bc1e86eabaf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnutls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98345, "scanner": "repobility-docker", "fingerprint": "567b887119d3db0e037e1d6d3aecfbb8105c043c90abaa305a3178a77c921299", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|567b887119d3db0e037e1d6d3aecfbb8105c043c90abaa305a3178a77c921299"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnutls/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98344, "scanner": "repobility-docker", "fingerprint": "e888377aa659cbc37b8af9d7bcce607245f76d62678818c7ddb16b96173ba35f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e888377aa659cbc37b8af9d7bcce607245f76d62678818c7ddb16b96173ba35f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnupg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98340, "scanner": "repobility-docker", "fingerprint": "6a5f15ade1bce310a67567e425cce794b50c2c824028f58e7cb0b45e0895b741", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a5f15ade1bce310a67567e425cce794b50c2c824028f58e7cb0b45e0895b741"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnupg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98339, "scanner": "repobility-docker", "fingerprint": "5219e17b37a5cf0bce6259cc88dbbdfba166b5a303036d761232f6d93a9a8a28", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5219e17b37a5cf0bce6259cc88dbbdfba166b5a303036d761232f6d93a9a8a28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gluon/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98338, "scanner": "repobility-docker", "fingerprint": "86cca1f50b1585aa22fc9ba7691902c2e31d066b43e1d35ab291432677ad3fae", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|86cca1f50b1585aa22fc9ba7691902c2e31d066b43e1d35ab291432677ad3fae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gluon/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98337, "scanner": "repobility-docker", "fingerprint": "7c2c44e8631c2f51f63f27bf0d06aeeaf35108241608ca8105c57680f96c7885", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c2c44e8631c2f51f63f27bf0d06aeeaf35108241608ca8105c57680f96c7885"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glslang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98334, "scanner": "repobility-docker", "fingerprint": "bffff12236fc2d0a75f0bf00dd8ebf9d14e4a011788afcd5980c225a5d9f4c35", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bffff12236fc2d0a75f0bf00dd8ebf9d14e4a011788afcd5980c225a5d9f4c35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glslang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98333, "scanner": "repobility-docker", "fingerprint": "d69a1320fb426cb84d1c80776fa33d6b60d315352f8be8081ec99cf193444f71", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d69a1320fb426cb84d1c80776fa33d6b60d315352f8be8081ec99cf193444f71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98332, "scanner": "repobility-docker", "fingerprint": "e6b99cc4d5fd360957a03f938f29c8ac0809fd1ebcad5bf2bc972ac39c5c280b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e6b99cc4d5fd360957a03f938f29c8ac0809fd1ebcad5bf2bc972ac39c5c280b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glom/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98331, "scanner": "repobility-docker", "fingerprint": "d4ad53ca5356daa87bb562079c48348c93187d4729e47f2034dc4782896e026d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4ad53ca5356daa87bb562079c48348c93187d4729e47f2034dc4782896e026d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glog/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98330, "scanner": "repobility-docker", "fingerprint": "f0fa94606ca2205144afd27f616f40c2b2ad29dcb97dc4915b9b51a5a6c3d5f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0fa94606ca2205144afd27f616f40c2b2ad29dcb97dc4915b9b51a5a6c3d5f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glog/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98329, "scanner": "repobility-docker", "fingerprint": "c2d1205c600d52edb2bb1d4010dac174dbd09ef2065a50fb258547e07ab70968", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2d1205c600d52edb2bb1d4010dac174dbd09ef2065a50fb258547e07ab70968"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98326, "scanner": "repobility-docker", "fingerprint": "1079d22b706d1ce8dea8dacbf3e541eff380b87cd9b1fdd27283cd623d194e79", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1079d22b706d1ce8dea8dacbf3e541eff380b87cd9b1fdd27283cd623d194e79"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98325, "scanner": "repobility-docker", "fingerprint": "e123c57c762e2328fd43a113d9b8cec912de3e2bcde9a5967b2ed6227c5602eb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e123c57c762e2328fd43a113d9b8cec912de3e2bcde9a5967b2ed6227c5602eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glaze/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98324, "scanner": "repobility-docker", "fingerprint": "1c865a11bb6ddf33fade99b99ad98f36d78746ab44f12964efb6d9ca0cc28f7f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c865a11bb6ddf33fade99b99ad98f36d78746ab44f12964efb6d9ca0cc28f7f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glaze/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98323, "scanner": "repobility-docker", "fingerprint": "238b5c74d48335f187cf6af0cf59fa9e226a1e4338ffdcd9c4fa723af8bd2c52", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|238b5c74d48335f187cf6af0cf59fa9e226a1e4338ffdcd9c4fa723af8bd2c52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitpython/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98322, "scanner": "repobility-docker", "fingerprint": "6d19e6296bae515c9d77c01055f6fc09b77c395adad79abd59931637f0d6d782", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d19e6296bae515c9d77c01055f6fc09b77c395adad79abd59931637f0d6d782"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitpython/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98321, "scanner": "repobility-docker", "fingerprint": "9fa340c7066417073b0cf8f87efb0035a8ec4226ae1b73b2ea9886cc28dd7cc4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9fa340c7066417073b0cf8f87efb0035a8ec4226ae1b73b2ea9886cc28dd7cc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitoxide/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98320, "scanner": "repobility-docker", "fingerprint": "2048fcb181885570e029308d46b01211f68c7b63d21425d9d63c669b5c010aec", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2048fcb181885570e029308d46b01211f68c7b63d21425d9d63c669b5c010aec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitoxide/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98319, "scanner": "repobility-docker", "fingerprint": "fb17ccc011a5bb93741a97c8692411fbcaf5f8e7594552026bab19c69faf6e95", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb17ccc011a5bb93741a97c8692411fbcaf5f8e7594552026bab19c69faf6e95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/github_scarecrow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98318, "scanner": "repobility-docker", "fingerprint": "6cf61fe848d8259b96dfd54490f4fc073f5108a50e379b4aa8554deb31e1441a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6cf61fe848d8259b96dfd54490f4fc073f5108a50e379b4aa8554deb31e1441a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/github_scarecrow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98317, "scanner": "repobility-docker", "fingerprint": "30b43bd30033ed342c6702a3bc6808098881c6b6a7134cac943930ec74991659", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|30b43bd30033ed342c6702a3bc6808098881c6b6a7134cac943930ec74991659"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitea/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98316, "scanner": "repobility-docker", "fingerprint": "52c20e0b324909e7ce6d766e8b3cb8b00cbceb00e61906545c6dd9d1d93a7e3e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52c20e0b324909e7ce6d766e8b3cb8b00cbceb00e61906545c6dd9d1d93a7e3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitea/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98315, "scanner": "repobility-docker", "fingerprint": "7224f623abce64322384511863edaf97f4f4252355cd5022a776f995faf419d9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7224f623abce64322384511863edaf97f4f4252355cd5022a776f995faf419d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitdb/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98314, "scanner": "repobility-docker", "fingerprint": "614916bf7938f9271ae77a6ba040807ab7c69632cb39e960e490e8627c3ae2b7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|614916bf7938f9271ae77a6ba040807ab7c69632cb39e960e490e8627c3ae2b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitdb/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98313, "scanner": "repobility-docker", "fingerprint": "63d32ddcd6e9694f81eab5d1deab0ecf063f90752fa14e873e170400b3ea5b83", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63d32ddcd6e9694f81eab5d1deab0ecf063f90752fa14e873e170400b3ea5b83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/git/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98311, "scanner": "repobility-docker", "fingerprint": "4e542643c0a2049b0027e4bd4003e75b4f47e043b7d8829f9ff30b7d2159cef7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e542643c0a2049b0027e4bd4003e75b4f47e043b7d8829f9ff30b7d2159cef7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/git/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98310, "scanner": "repobility-docker", "fingerprint": "d60449254df0ea0c08212b1330fdae42183b8e07c8a40e337410e79ec21335ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d60449254df0ea0c08212b1330fdae42183b8e07c8a40e337410e79ec21335ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gimli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98307, "scanner": "repobility-docker", "fingerprint": "81345aac2e916fda6386c79e4ffa4f10a089f5203aa58698e300961381f7e9b7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|81345aac2e916fda6386c79e4ffa4f10a089f5203aa58698e300961381f7e9b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gimli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98306, "scanner": "repobility-docker", "fingerprint": "34f1b7463cc38b194549d5f98bc01755716b154163c1f85742d1258b6edf44fb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|34f1b7463cc38b194549d5f98bc01755716b154163c1f85742d1258b6edf44fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98303, "scanner": "repobility-docker", "fingerprint": "eedb2e52648a2a9df23588bd66b170b2870c9e540426c8c6043cf4893dc4b6be", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eedb2e52648a2a9df23588bd66b170b2870c9e540426c8c6043cf4893dc4b6be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98302, "scanner": "repobility-docker", "fingerprint": "a771d437dcb746095febb321fa8467ade68c31d18ff6351442aa897f44044048", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a771d437dcb746095febb321fa8467ade68c31d18ff6351442aa897f44044048"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ghostscript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98299, "scanner": "repobility-docker", "fingerprint": "a15546dbb80fbda94703ba0bfebc123c04c97da498a83f6844801cd6b5ef5731", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a15546dbb80fbda94703ba0bfebc123c04c97da498a83f6844801cd6b5ef5731"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ghostscript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98298, "scanner": "repobility-docker", "fingerprint": "03a987921ca2abd705b0361af986083c16c84b8d36067aa1864e38b4b02af440", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03a987921ca2abd705b0361af986083c16c84b8d36067aa1864e38b4b02af440"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gfwx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98295, "scanner": "repobility-docker", "fingerprint": "3417df3e10b81f31b613aeb03cb17e7794518e95eebbb4f6a88df01e3880df0a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3417df3e10b81f31b613aeb03cb17e7794518e95eebbb4f6a88df01e3880df0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gfwx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98294, "scanner": "repobility-docker", "fingerprint": "c282098dd4e7ddaf4f8149e4bb35d20a61ab407a1d3ec7e16ad01fe25e036f53", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c282098dd4e7ddaf4f8149e4bb35d20a61ab407a1d3ec7e16ad01fe25e036f53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/geos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98291, "scanner": "repobility-docker", "fingerprint": "6e1b4523e11db08d138b5b4d3884d0bc35a4979da0fe83b4f92bda4c95abd0ef", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e1b4523e11db08d138b5b4d3884d0bc35a4979da0fe83b4f92bda4c95abd0ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/geos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98290, "scanner": "repobility-docker", "fingerprint": "48cf127afe4d5253811f58932d254925e9af3ed037b12a365e5a81f39501280f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48cf127afe4d5253811f58932d254925e9af3ed037b12a365e5a81f39501280f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/genshi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98289, "scanner": "repobility-docker", "fingerprint": "5ddfb0d58398691a66919ff7a5b07818c2b4494c133064b5bae493ba0743f40e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ddfb0d58398691a66919ff7a5b07818c2b4494c133064b5bae493ba0743f40e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/genshi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98288, "scanner": "repobility-docker", "fingerprint": "412ff700412b31904307ada7b718d2fdd5a495edc51f52e9a14abda4d101f96a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|412ff700412b31904307ada7b718d2fdd5a495edc51f52e9a14abda4d101f96a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98287, "scanner": "repobility-docker", "fingerprint": "7ee6b82c1d4e629e9221d3c732e9757f3eea4b686d5f5df6238bd3bae39680c2", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ee6b82c1d4e629e9221d3c732e9757f3eea4b686d5f5df6238bd3bae39680c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 41}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98286, "scanner": "repobility-docker", "fingerprint": "0579b271192e17cb4be57d82fb444bf9050110d065dd0c90e52be0c64acff4b1", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0579b271192e17cb4be57d82fb444bf9050110d065dd0c90e52be0c64acff4b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98285, "scanner": "repobility-docker", "fingerprint": "1948222947deaf503d90220bbbcdb6cf25d488cbafbc2643586011bb333d521e", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1948222947deaf503d90220bbbcdb6cf25d488cbafbc2643586011bb333d521e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 39}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98283, "scanner": "repobility-docker", "fingerprint": "843c557fe0aa9b1b9d7504c4ff1d269c6680cfffed5e40542fa64692920df5fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|843c557fe0aa9b1b9d7504c4ff1d269c6680cfffed5e40542fa64692920df5fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98282, "scanner": "repobility-docker", "fingerprint": "0c8c67209171af22d377486e9c6afa9e8426c9f4f2163317dd83f9ea4a8de66f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c8c67209171af22d377486e9c6afa9e8426c9f4f2163317dd83f9ea4a8de66f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdbm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98279, "scanner": "repobility-docker", "fingerprint": "ab4ce18e00cab2afb7e77de7c9230f99c66f957f1a1cd4645dcd30d451e3cdc0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab4ce18e00cab2afb7e77de7c9230f99c66f957f1a1cd4645dcd30d451e3cdc0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdbm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98278, "scanner": "repobility-docker", "fingerprint": "58b41eea018cb52a7a95eb80cbf8d8cd19b9d9e3d492d1fe80eceed739931ef4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58b41eea018cb52a7a95eb80cbf8d8cd19b9d9e3d492d1fe80eceed739931ef4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdal/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98275, "scanner": "repobility-docker", "fingerprint": "3a4f9dd41c97f7ff4414b65d79ec8c5fbc98fec499a75f4051eca0013810329c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a4f9dd41c97f7ff4414b65d79ec8c5fbc98fec499a75f4051eca0013810329c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcp-python-cloud-storage/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98274, "scanner": "repobility-docker", "fingerprint": "bdd0a31ff02ddb66fa501bb545656927d39de5be9a9de2f62d708d19851ce98d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bdd0a31ff02ddb66fa501bb545656927d39de5be9a9de2f62d708d19851ce98d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcp-python-cloud-storage/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98273, "scanner": "repobility-docker", "fingerprint": "84e854d764ae035c57ab8fcd021fc45dc17a67bc1c409f927afb02c32748f3ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84e854d764ae035c57ab8fcd021fc45dc17a67bc1c409f927afb02c32748f3ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcloud-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98272, "scanner": "repobility-docker", "fingerprint": "91bdd2f4f8231ab6231ac34d04ce0daf238ec5babec54f41b861bce342512f58", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91bdd2f4f8231ab6231ac34d04ce0daf238ec5babec54f41b861bce342512f58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcloud-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98271, "scanner": "repobility-docker", "fingerprint": "c98800e3d1157965a506f0d2e25204568cac4762477d70a0ff5e7be36a26b526", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c98800e3d1157965a506f0d2e25204568cac4762477d70a0ff5e7be36a26b526"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcloud-error-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98270, "scanner": "repobility-docker", "fingerprint": "15ea3e33bc49104a7df73f1ec5cd5e76cba8f27aa3f9ca64a206199cb9ebfd54", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|15ea3e33bc49104a7df73f1ec5cd5e76cba8f27aa3f9ca64a206199cb9ebfd54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gcloud-error-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98269, "scanner": "repobility-docker", "fingerprint": "e74701b2e1b7a884c74d8fa6798fd2bfdc250b0525980a8143b0fed86527b738", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e74701b2e1b7a884c74d8fa6798fd2bfdc250b0525980a8143b0fed86527b738"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98264, "scanner": "repobility-docker", "fingerprint": "3b0a95f2c0c1e98a09a04f3efbb0eeb2fc4b4b40cde32b508d88f35b5d046f3f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b0a95f2c0c1e98a09a04f3efbb0eeb2fc4b4b40cde32b508d88f35b5d046f3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98263, "scanner": "repobility-docker", "fingerprint": "1ba17cfff8500d5b3630820b8687b5b5423dcc550a6673b782a66423761526e7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ba17cfff8500d5b3630820b8687b5b5423dcc550a6673b782a66423761526e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98260, "scanner": "repobility-docker", "fingerprint": "398a9a7de11359b7dbcb15bb03c307f3443ee5af9552874a3ba66ab3d7e3d183", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|398a9a7de11359b7dbcb15bb03c307f3443ee5af9552874a3ba66ab3d7e3d183"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gateway/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98259, "scanner": "repobility-docker", "fingerprint": "09c2074a251dfe9ca56b0996e30334fc146113d72bed320410b75dfd4d63cf40", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09c2074a251dfe9ca56b0996e30334fc146113d72bed320410b75dfd4d63cf40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gast/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98258, "scanner": "repobility-docker", "fingerprint": "87b97d44f2de33acdbeab8265c816bc790100a6e01066b68b800e167a2fb26f1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87b97d44f2de33acdbeab8265c816bc790100a6e01066b68b800e167a2fb26f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-py-crc32c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98257, "scanner": "repobility-docker", "fingerprint": "3965c8d115f4a8f37209dd68b296f19f61cae7da5f6e310097364e9001e330ea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3965c8d115f4a8f37209dd68b296f19f61cae7da5f6e310097364e9001e330ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-py-crc32c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98256, "scanner": "repobility-docker", "fingerprint": "03a69f0252448ec247eacc0378fd89133402804b2fc071945704ff3709d2a0fb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03a69f0252448ec247eacc0378fd89133402804b2fc071945704ff3709d2a0fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-py-bigquery/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98255, "scanner": "repobility-docker", "fingerprint": "f3fe305d2edc9b2ecc664c0d947f3c9a3519b5a2cbcc9f767e857d2efd072358", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3fe305d2edc9b2ecc664c0d947f3c9a3519b5a2cbcc9f767e857d2efd072358"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-py-bigquery/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98254, "scanner": "repobility-docker", "fingerprint": "fb0e92396cc4ae758df34a76de4537d9df691a7f0171751b94bf29084164f138", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb0e92396cc4ae758df34a76de4537d9df691a7f0171751b94bf29084164f138"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-oauth-java-client/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98253, "scanner": "repobility-docker", "fingerprint": "dafb15b74223f588f328c73cc9322c850c51d300ef062038485415dcd8a85071", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dafb15b74223f588f328c73cc9322c850c51d300ef062038485415dcd8a85071"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-oauth-java-client/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98252, "scanner": "repobility-docker", "fingerprint": "3ef6ede8c1ec68c5816cdf683c19efd40e995bdfa85c475b207abc99b10938ce", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ef6ede8c1ec68c5816cdf683c19efd40e995bdfa85c475b207abc99b10938ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-http-java-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98251, "scanner": "repobility-docker", "fingerprint": "e9c9017e74fba47319e9db019e40f2d4a11d81ae11fd81a290326cd902e936b7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9c9017e74fba47319e9db019e40f2d4a11d81ae11fd81a290326cd902e936b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-http-java-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98250, "scanner": "repobility-docker", "fingerprint": "eacc12eadac9da853b969b6fc24507d9de4d425ca8e58c7947759e04324518e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eacc12eadac9da853b969b6fc24507d9de4d425ca8e58c7947759e04324518e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-cloud-logging-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98249, "scanner": "repobility-docker", "fingerprint": "9e3da292746c4529507a9b5dbf3aa435b8ac34e3c3a084dcfb65b78a2faed1c3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e3da292746c4529507a9b5dbf3aa435b8ac34e3c3a084dcfb65b78a2faed1c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-cloud-logging-py/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98248, "scanner": "repobility-docker", "fingerprint": "4fb1cdfad4975c60cea1bce440ef2864688ba5550514da8600493af26eb3b714", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4fb1cdfad4975c60cea1bce440ef2864688ba5550514da8600493af26eb3b714"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-auth-library-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98247, "scanner": "repobility-docker", "fingerprint": "b49ef930beaffcb638acee9a63a7c78b5803fcbf65c11393040fee60b053f566", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b49ef930beaffcb638acee9a63a7c78b5803fcbf65c11393040fee60b053f566"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-auth-library-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98246, "scanner": "repobility-docker", "fingerprint": "ac3dfb7e36c344e415980e1215688b22fdf8838f11b3a78b431f523a03f54040", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac3dfb7e36c344e415980e1215688b22fdf8838f11b3a78b431f523a03f54040"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-apis-py-api-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98245, "scanner": "repobility-docker", "fingerprint": "117739f9c11a677935898b2795cc481241ae437e0b721719cc6dd170e8808d94", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|117739f9c11a677935898b2795cc481241ae437e0b721719cc6dd170e8808d94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-apis-py-api-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98244, "scanner": "repobility-docker", "fingerprint": "3d5819f5ae4e36e8fbbaf824c751d1b0968d92d89015d278f29f2771e5fc6c3d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3d5819f5ae4e36e8fbbaf824c751d1b0968d92d89015d278f29f2771e5fc6c3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98239, "scanner": "repobility-docker", "fingerprint": "a5fa48900c6b539a57deedc9ed35d3254016e83ba0c11016510dbc07cef1ec21", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5fa48900c6b539a57deedc9ed35d3254016e83ba0c11016510dbc07cef1ec21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98238, "scanner": "repobility-docker", "fingerprint": "2219394280d32b3c072089336b59f0b72bd067282a7ae90a7c1b19ea153ba012", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2219394280d32b3c072089336b59f0b72bd067282a7ae90a7c1b19ea153ba012"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98237, "scanner": "repobility-docker", "fingerprint": "084a240d0ee3ef9456ba7827a6539bc2c3283d66ce4a68aacc61eb790cde38de", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|084a240d0ee3ef9456ba7827a6539bc2c3283d66ce4a68aacc61eb790cde38de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98236, "scanner": "repobility-docker", "fingerprint": "b6627c221a1d1f7b16ac04e66102266741b2c21f16627fa5c6fc383cc50a1df8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6627c221a1d1f7b16ac04e66102266741b2c21f16627fa5c6fc383cc50a1df8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98232, "scanner": "repobility-docker", "fingerprint": "a7ae0346dc437cc64ab67699bc72167ee82ad5aeb6c1e19036b781f407abf537", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7ae0346dc437cc64ab67699bc72167ee82ad5aeb6c1e19036b781f407abf537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98231, "scanner": "repobility-docker", "fingerprint": "21d748327f519482491376caf1949966e05bbfd1ebef766584568c08e9129ea9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21d748327f519482491376caf1949966e05bbfd1ebef766584568c08e9129ea9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98226, "scanner": "repobility-docker", "fingerprint": "39fa95c165ebaed11376a71bea443f41175e6715269489f09a48d2f61a8a3992", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|39fa95c165ebaed11376a71bea443f41175e6715269489f09a48d2f61a8a3992"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98225, "scanner": "repobility-docker", "fingerprint": "7857cf34b23d419be83837711fe88295fcdc4a41fa974e0e22c32665b4ba8558", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7857cf34b23d419be83837711fe88295fcdc4a41fa974e0e22c32665b4ba8558"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-firestore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98224, "scanner": "repobility-docker", "fingerprint": "cc0e99daa9e65dfc4dad85e459c967a5742e45465fe37d4f6ec84c27b96f0e44", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cc0e99daa9e65dfc4dad85e459c967a5742e45465fe37d4f6ec84c27b96f0e44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-firestore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98223, "scanner": "repobility-docker", "fingerprint": "530c1c79910dda85af213bae9b3cdeaf4d7da6d93d61fbeff10d9d1985f4f0f2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|530c1c79910dda85af213bae9b3cdeaf4d7da6d93d61fbeff10d9d1985f4f0f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-cloud-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98222, "scanner": "repobility-docker", "fingerprint": "0317c2bd8c6068a9a7e17c84b61e467887bccda9b7edf09109d89df8103c623a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0317c2bd8c6068a9a7e17c84b61e467887bccda9b7edf09109d89df8103c623a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-cloud-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98221, "scanner": "repobility-docker", "fingerprint": "54f2f58e1fe7b1dcd3bb45697c83e6f1d3ddb7b5f0799f055feb6b244bb183a1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54f2f58e1fe7b1dcd3bb45697c83e6f1d3ddb7b5f0799f055feb6b244bb183a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98220, "scanner": "repobility-docker", "fingerprint": "a60710438a59ad7242da026ec433a58474b40af59398eae9859942b823c53d87", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a60710438a59ad7242da026ec433a58474b40af59398eae9859942b823c53d87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98219, "scanner": "repobility-docker", "fingerprint": "310da6673e8ebbd61651d5144c424c0cba686100e210284d5515a0082e1ed9ec", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|310da6673e8ebbd61651d5144c424c0cba686100e210284d5515a0082e1ed9ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-bigquery-storage/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98217, "scanner": "repobility-docker", "fingerprint": "2c7a8786f184d8db7b64235cdac89fc4e25124be34a7b386ee5c02dc3860c8b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c7a8786f184d8db7b64235cdac89fc4e25124be34a7b386ee5c02dc3860c8b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-bigquery-storage/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98216, "scanner": "repobility-docker", "fingerprint": "0b4a2cee9c371acb0dface7212f4f3d9e2816a11d2dced34504b5402a7b39438", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0b4a2cee9c371acb0dface7212f4f3d9e2816a11d2dced34504b5402a7b39438"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-oauthlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98213, "scanner": "repobility-docker", "fingerprint": "4604761b14d692c702d9b930426c59c434d9241891df3bdb183f9c1c1c3d56e9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4604761b14d692c702d9b930426c59c434d9241891df3bdb183f9c1c1c3d56e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-oauthlib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98212, "scanner": "repobility-docker", "fingerprint": "edfab3395c28ca4823933bd2b2244bd6fabd1ebbf9399dc08f6b8506e7edd063", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|edfab3395c28ca4823933bd2b2244bd6fabd1ebbf9399dc08f6b8506e7edd063"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-api-common-protos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98209, "scanner": "repobility-docker", "fingerprint": "5e8421b6c26b5aefc23175c2c8a015ed1cc2a5bb6d1be32c2219018c0eb58664", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e8421b6c26b5aefc23175c2c8a015ed1cc2a5bb6d1be32c2219018c0eb58664"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-api-common-protos/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98208, "scanner": "repobility-docker", "fingerprint": "00991510def114fd9b1861a7c1256b18f3bb86e1e740390ba5876e06d96f2c56", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|00991510def114fd9b1861a7c1256b18f3bb86e1e740390ba5876e06d96f2c56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-pubsub/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98206, "scanner": "repobility-docker", "fingerprint": "27a2b7b72c3d24bb9da5a8013bb71e69c398991770fcb3233bd204309ed2dd9e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|27a2b7b72c3d24bb9da5a8013bb71e69c398991770fcb3233bd204309ed2dd9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-pubsub/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98205, "scanner": "repobility-docker", "fingerprint": "1fd6b90feb805ac61fa12aff7c22e552ba94cdb03e7c9756cdf78a6d537cb4a1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1fd6b90feb805ac61fa12aff7c22e552ba94cdb03e7c9756cdf78a6d537cb4a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-library-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98204, "scanner": "repobility-docker", "fingerprint": "0fbc27443881983ad7e2cb197a80f5b4020f0fcf55436c68c74d628ed84d1275", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0fbc27443881983ad7e2cb197a80f5b4020f0fcf55436c68c74d628ed84d1275"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-library-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98203, "scanner": "repobility-docker", "fingerprint": "1a95a775f1052bd8634f7af774b902328800fe1fa5d86977a6a9a006e61c0188", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a95a775f1052bd8634f7af774b902328800fe1fa5d86977a6a9a006e61c0188"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-httplib2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98199, "scanner": "repobility-docker", "fingerprint": "250364a9056b8911291fdfbb659c4bc0e3a0eed3a37adecc91f82298242bc065", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|250364a9056b8911291fdfbb659c4bc0e3a0eed3a37adecc91f82298242bc065"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-httplib2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98198, "scanner": "repobility-docker", "fingerprint": "ca589046feca10efe61dfba16fd28e416b13ec74c56871d22c3d4f5cdf2434ec", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca589046feca10efe61dfba16fd28e416b13ec74c56871d22c3d4f5cdf2434ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fwupd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98194, "scanner": "repobility-docker", "fingerprint": "038c545e769af0e3374fb6f6b39b63b21d9f1604196fa541ffe809df01f163f7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|038c545e769af0e3374fb6f6b39b63b21d9f1604196fa541ffe809df01f163f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fwupd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98193, "scanner": "repobility-docker", "fingerprint": "07f3f8026f6533446997e4c7f14ad1c3e145a86c3b6c17f85fc611284b07db03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07f3f8026f6533446997e4c7f14ad1c3e145a86c3b6c17f85fc611284b07db03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzywuzzy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98192, "scanner": "repobility-docker", "fingerprint": "b996e5aa15841c1708059ed68a016baa0ad66bea38eec4d5b18e3387d226ae03", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b996e5aa15841c1708059ed68a016baa0ad66bea38eec4d5b18e3387d226ae03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzywuzzy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98191, "scanner": "repobility-docker", "fingerprint": "e93cf582a60c9d6166628ce9986e654bfcc997323dc6150c14528ede04806983", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e93cf582a60c9d6166628ce9986e654bfcc997323dc6150c14528ede04806983"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-raksha/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98188, "scanner": "repobility-docker", "fingerprint": "3243da48ccbf1e1b425515d2b040914ab596b9aaf1b6b72c55e5a825d0aa86f4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3243da48ccbf1e1b425515d2b040914ab596b9aaf1b6b72c55e5a825d0aa86f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-raksha/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98187, "scanner": "repobility-docker", "fingerprint": "6b267d821aa29a6a78d03b5bf6308cd55d9587dc930683ce932e12956c5d9218", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b267d821aa29a6a78d03b5bf6308cd55d9587dc930683ce932e12956c5d9218"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98186, "scanner": "repobility-docker", "fingerprint": "95655bf9e3b120a05d08080c94bf31c996139204c0bd3bb1de982e6e2933d5d7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95655bf9e3b120a05d08080c94bf31c996139204c0bd3bb1de982e6e2933d5d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98185, "scanner": "repobility-docker", "fingerprint": "6d2264b3ee5302a539d12cc1d7ce97375aec23a446a68fb25d581740505a0274", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d2264b3ee5302a539d12cc1d7ce97375aec23a446a68fb25d581740505a0274"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98184, "scanner": "repobility-docker", "fingerprint": "c17e0d7d38753632de40c6af54d386b2dcc3c31a67b3d670108f487c129b651f", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c17e0d7d38753632de40c6af54d386b2dcc3c31a67b3d670108f487c129b651f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98181, "scanner": "repobility-docker", "fingerprint": "e55f16bce5a52aa18fe1ba1a94d31b3b4db3b483d16783635d7f79d168037ea1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e55f16bce5a52aa18fe1ba1a94d31b3b4db3b483d16783635d7f79d168037ea1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98180, "scanner": "repobility-docker", "fingerprint": "d585127b4a752d9fec939878a74e7b3fc40300e5cdeeab19c94c906d136f4026", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d585127b4a752d9fec939878a74e7b3fc40300e5cdeeab19c94c906d136f4026"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ftfy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98179, "scanner": "repobility-docker", "fingerprint": "b6ff97d6eccd2ffe3673e5730d98dfa53e6a97a1d6f94ba475b44c4046cba8fc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6ff97d6eccd2ffe3673e5730d98dfa53e6a97a1d6f94ba475b44c4046cba8fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ftfy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98178, "scanner": "repobility-docker", "fingerprint": "92fc816ace2f056f40fad9ed4d1c107f92b1cd9c13ca91d3953098f289a9a710", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92fc816ace2f056f40fad9ed4d1c107f92b1cd9c13ca91d3953098f289a9a710"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fsnotify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98177, "scanner": "repobility-docker", "fingerprint": "6c7d2e253bcae162d6ebfb043a8f0c5c79bf2a15b1589bb4fab0be02873d8228", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c7d2e253bcae162d6ebfb043a8f0c5c79bf2a15b1589bb4fab0be02873d8228"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fsnotify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98176, "scanner": "repobility-docker", "fingerprint": "1e366c41021127a92c4ec27a783801a476efca33a62e05e527a3e737f50c9e11", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e366c41021127a92c4ec27a783801a476efca33a62e05e527a3e737f50c9e11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/frr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98173, "scanner": "repobility-docker", "fingerprint": "fbfc03f65412aa2129cd01f7bfa5ddb3a7423e9684923030c826709268dedecd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbfc03f65412aa2129cd01f7bfa5ddb3a7423e9684923030c826709268dedecd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/frr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98172, "scanner": "repobility-docker", "fingerprint": "3dedfa0944059fa566a1edaf45e03576036e3e95cc1c10d84774cbe9309ef3bb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3dedfa0944059fa566a1edaf45e03576036e3e95cc1c10d84774cbe9309ef3bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fribidi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98169, "scanner": "repobility-docker", "fingerprint": "9abc833c1507ce03c12ae9d3117fb2e3a38c49b90f4f59c32c94cb4bd9e1b50a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9abc833c1507ce03c12ae9d3117fb2e3a38c49b90f4f59c32c94cb4bd9e1b50a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fribidi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98168, "scanner": "repobility-docker", "fingerprint": "7d4b51aca4edea389448a51876a8c60e78d90e3b78426b2748b74fbd0bc6c2fe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d4b51aca4edea389448a51876a8c60e78d90e3b78426b2748b74fbd0bc6c2fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 98167, "scanner": "repobility-docker", "fingerprint": "7f5ad69746d406814730b15e1e6e3866ebad54cc4c824db9ce97bdb71ff40517", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f5ad69746d406814730b15e1e6e3866ebad54cc4c824db9ce97bdb71ff40517"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98163, "scanner": "repobility-docker", "fingerprint": "f34e6968d2b4beaecf12f479fdde414611e655e879b0e1a486d1f5f9b9e947d8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f34e6968d2b4beaecf12f479fdde414611e655e879b0e1a486d1f5f9b9e947d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98162, "scanner": "repobility-docker", "fingerprint": "12ffe23e7b7a009e604ef804771a22ab316fba78b5381ded4890c7b8d4e4fce0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12ffe23e7b7a009e604ef804771a22ab316fba78b5381ded4890c7b8d4e4fce0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freerdp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98159, "scanner": "repobility-docker", "fingerprint": "7e9da5171ef8bc8ecddfc252ebb911c33efceaaa721e3cdf01fdd832ecf7959f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e9da5171ef8bc8ecddfc252ebb911c33efceaaa721e3cdf01fdd832ecf7959f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freerdp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98158, "scanner": "repobility-docker", "fingerprint": "b28ce295aeaf881b2d5054b276a03720538f159c08cbabeeb2cf1e7732b7f4aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b28ce295aeaf881b2d5054b276a03720538f159c08cbabeeb2cf1e7732b7f4aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeradius/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98153, "scanner": "repobility-docker", "fingerprint": "0953a2dee972c4c92fd512b187e6c49d3bc01cdd3e87de93a2d2d7c1f8af25ad", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0953a2dee972c4c92fd512b187e6c49d3bc01cdd3e87de93a2d2d7c1f8af25ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeimage/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98150, "scanner": "repobility-docker", "fingerprint": "c269ee1e531962b52a883a8d560d764f59f7826640b212cd2b372ef370cd9262", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c269ee1e531962b52a883a8d560d764f59f7826640b212cd2b372ef370cd9262"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeimage/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98149, "scanner": "repobility-docker", "fingerprint": "f810e13bea90b0f366679e4f3b2c31bf10cf31a00ae4d3bb20a3a87dbaf54ebf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f810e13bea90b0f366679e4f3b2c31bf10cf31a00ae4d3bb20a3a87dbaf54ebf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fontations/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98148, "scanner": "repobility-docker", "fingerprint": "543e329283f3aad54704b184c4e98a9972a144d5e49b13e07eb9d5e4afa1d3a5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|543e329283f3aad54704b184c4e98a9972a144d5e49b13e07eb9d5e4afa1d3a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fontations/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98147, "scanner": "repobility-docker", "fingerprint": "af34b050b5a6475d0a13080e36ed601bde0b9b2488779146afa769b043174961", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|af34b050b5a6475d0a13080e36ed601bde0b9b2488779146afa769b043174961"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fmt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98144, "scanner": "repobility-docker", "fingerprint": "9413fd819f7347fce511f6fe4bc8dab59100c0867eef908d8044456dad4cfcac", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9413fd819f7347fce511f6fe4bc8dab59100c0867eef908d8044456dad4cfcac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fmt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98143, "scanner": "repobility-docker", "fingerprint": "a370e2a1b73628d3c0b0b460876135bb3fe4d8df636e7ceea748084a7e1cefa2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a370e2a1b73628d3c0b0b460876135bb3fe4d8df636e7ceea748084a7e1cefa2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flyway/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98142, "scanner": "repobility-docker", "fingerprint": "964fd7b97fd30d7b69c8a48ba77ebdbc2cd9deba4e19de78d2667c95df809f0f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|964fd7b97fd30d7b69c8a48ba77ebdbc2cd9deba4e19de78d2667c95df809f0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flyway/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98141, "scanner": "repobility-docker", "fingerprint": "3fb28eee636b36adf260446a19ec24a1f6bc3eacd660e977b420fc4f98d8b202", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fb28eee636b36adf260446a19ec24a1f6bc3eacd660e977b420fc4f98d8b202"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fluxcd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98140, "scanner": "repobility-docker", "fingerprint": "d2e4b27bd2064c4009cbfb6368a90798c8266409dd7a1c535be5cceca9248e4a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d2e4b27bd2064c4009cbfb6368a90798c8266409dd7a1c535be5cceca9248e4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fluxcd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98139, "scanner": "repobility-docker", "fingerprint": "e4da2a19c7d466d821852592a8bc31827bac7f774000535d7510230024266dc8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4da2a19c7d466d821852592a8bc31827bac7f774000535d7510230024266dc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fluent-bit/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98136, "scanner": "repobility-docker", "fingerprint": "0e51df878e642500b07712fc4bff561a92d8f9f53e6235cabee3cd98161c3891", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e51df878e642500b07712fc4bff561a92d8f9f53e6235cabee3cd98161c3891"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98133, "scanner": "repobility-docker", "fingerprint": "bfe301f5fa18d0047b748ddd7a21f7a68f2f1d6f155785295939f8f00c97bc51", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bfe301f5fa18d0047b748ddd7a21f7a68f2f1d6f155785295939f8f00c97bc51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flex/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98132, "scanner": "repobility-docker", "fingerprint": "11f89bc1a4e831f3cf98bcfea4f6e37b1d2f0ac486a389a49ce63b3da1ae2e58", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|11f89bc1a4e831f3cf98bcfea4f6e37b1d2f0ac486a389a49ce63b3da1ae2e58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flate2-rs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98131, "scanner": "repobility-docker", "fingerprint": "d05620b2fbcaa7adda1f58c351eb1ce40f55a506f5a2a2cb4e5934806e3ca331", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d05620b2fbcaa7adda1f58c351eb1ce40f55a506f5a2a2cb4e5934806e3ca331"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flate2-rs/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98130, "scanner": "repobility-docker", "fingerprint": "f88d31628f0bc47e5de0f0bffc3acd3c1054ea19ca0ad938d639cc4d8a5f60a9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f88d31628f0bc47e5de0f0bffc3acd3c1054ea19ca0ad938d639cc4d8a5f60a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flatbuffers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98127, "scanner": "repobility-docker", "fingerprint": "6ea69b029a2d30a88f8ab939d4c9c902a9e4d315b315da0a09dffe8eedce81c3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ea69b029a2d30a88f8ab939d4c9c902a9e4d315b315da0a09dffe8eedce81c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flatbuffers/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98126, "scanner": "repobility-docker", "fingerprint": "f0e516a4b0dbf6d81d0128bf82ba5726a7fd0a4e097e81625ccc354deb324da9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0e516a4b0dbf6d81d0128bf82ba5726a7fd0a4e097e81625ccc354deb324da9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-wtf/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98125, "scanner": "repobility-docker", "fingerprint": "674564d1fd05cc7af672ac835958052ac2de640a618962c20bd0d8b751e79357", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|674564d1fd05cc7af672ac835958052ac2de640a618962c20bd0d8b751e79357"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-wtf/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98124, "scanner": "repobility-docker", "fingerprint": "ed26885fc563a8a753b08c058eb0e2220b767c1f1d9bf63a141b449d9f450431", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed26885fc563a8a753b08c058eb0e2220b767c1f1d9bf63a141b449d9f450431"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98121, "scanner": "repobility-docker", "fingerprint": "1caf277f2161ae95344cea2bc46440fc834fba4f6f1ec7ea4ca8d89ce8965bee", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1caf277f2161ae95344cea2bc46440fc834fba4f6f1ec7ea4ca8d89ce8965bee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98120, "scanner": "repobility-docker", "fingerprint": "bc43fd356e52cb06aa33d6542d9f6f7598ac775cb3dd9a87098c39a517277e99", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc43fd356e52cb06aa33d6542d9f6f7598ac775cb3dd9a87098c39a517277e99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-jwt-extended/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98119, "scanner": "repobility-docker", "fingerprint": "3aa64fd04e85c3f8ee6a61c7adb49a8b280a91ca0425dc81ee5974b48e8ddfed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3aa64fd04e85c3f8ee6a61c7adb49a8b280a91ca0425dc81ee5974b48e8ddfed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-jwt-extended/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98118, "scanner": "repobility-docker", "fingerprint": "498bbbfdfefacc0b17486919f7e3b4e4b81e6f67b656e058d67670279f5515a0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|498bbbfdfefacc0b17486919f7e3b4e4b81e6f67b656e058d67670279f5515a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98114, "scanner": "repobility-docker", "fingerprint": "57c7e8e971b29913a17b0ddb392c2c9519e24f15cef8e2299323be850e912c6b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57c7e8e971b29913a17b0ddb392c2c9519e24f15cef8e2299323be850e912c6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98113, "scanner": "repobility-docker", "fingerprint": "8778c872be4bf094b49c92642d8c6c32816c0c46c788fa3d9290b4b569691742", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8778c872be4bf094b49c92642d8c6c32816c0c46c788fa3d9290b4b569691742"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98110, "scanner": "repobility-docker", "fingerprint": "287c214d33a6a44a0eb9759af6a9fd147f93c0e036de5ec5105b099ceca3b9e8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|287c214d33a6a44a0eb9759af6a9fd147f93c0e036de5ec5105b099ceca3b9e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flac/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98109, "scanner": "repobility-docker", "fingerprint": "55727a985a069171d3eb7b92bdb1c140cde8a5d11e2cc9ceb7fdf4ba4b50dadd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55727a985a069171d3eb7b92bdb1c140cde8a5d11e2cc9ceb7fdf4ba4b50dadd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firestore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98106, "scanner": "repobility-docker", "fingerprint": "5ff8fc9f38b97bfb72f2acd70d8d7f2d58ce4fa4f7cbd3fbacbf755d80719685", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ff8fc9f38b97bfb72f2acd70d8d7f2d58ce4fa4f7cbd3fbacbf755d80719685"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firestore/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98105, "scanner": "repobility-docker", "fingerprint": "713edaa2052ee482174bd8d4e9baf5f7ac32c30eef625f790f21e179cc462ea5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|713edaa2052ee482174bd8d4e9baf5f7ac32c30eef625f790f21e179cc462ea5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firefox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98102, "scanner": "repobility-docker", "fingerprint": "eaa7af2e70d6d7ec85c43db586e6d3707063d8edc297926c0d80c07dbb18e24a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eaa7af2e70d6d7ec85c43db586e6d3707063d8edc297926c0d80c07dbb18e24a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firefox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98101, "scanner": "repobility-docker", "fingerprint": "ca8d8055903666a5f0bebfb6da1f125cb26593f0662b79a437993873d9e72a9f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca8d8055903666a5f0bebfb6da1f125cb26593f0662b79a437993873d9e72a9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fips203/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98098, "scanner": "repobility-docker", "fingerprint": "c21afc3dc172fcf4997f59032c9fb39751d9dcf5bbe74bbfd9eb7dad37e736d2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c21afc3dc172fcf4997f59032c9fb39751d9dcf5bbe74bbfd9eb7dad37e736d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fips203/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98097, "scanner": "repobility-docker", "fingerprint": "b8ac6d9d524eb341fecc4b95c89e1857343efb055b9cd251644d154ac8b9c64e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8ac6d9d524eb341fecc4b95c89e1857343efb055b9cd251644d154ac8b9c64e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98094, "scanner": "repobility-docker", "fingerprint": "633e40a2c9becd9d1397d71db75df7cfa0119181e15878c659744cec60c41353", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|633e40a2c9becd9d1397d71db75df7cfa0119181e15878c659744cec60c41353"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fio/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98093, "scanner": "repobility-docker", "fingerprint": "91189dfa245ea7653ce3987f0b852d6d840dd5455decf28944d443f58116a809", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91189dfa245ea7653ce3987f0b852d6d840dd5455decf28944d443f58116a809"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filesystem_spec/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98092, "scanner": "repobility-docker", "fingerprint": "33c58f7b9ef287e7384e748d6daab38978565378095cc3f1953e9d6f99c15a9b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33c58f7b9ef287e7384e748d6daab38978565378095cc3f1953e9d6f99c15a9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filesystem_spec/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98091, "scanner": "repobility-docker", "fingerprint": "21256d44ef917f377091bf0a9b6d824333a0b56ee0253eb2081bb74f9ea26d63", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21256d44ef917f377091bf0a9b6d824333a0b56ee0253eb2081bb74f9ea26d63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filelock/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98087, "scanner": "repobility-docker", "fingerprint": "d37774aba688d63a279f61eab63fa9ada27709c96ee072ec2db17fd017d4bda3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d37774aba688d63a279f61eab63fa9ada27709c96ee072ec2db17fd017d4bda3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filelock/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98086, "scanner": "repobility-docker", "fingerprint": "2cef449fff03a087444f167160ef4edafe5b94f5533d290af6720d72e60335be", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2cef449fff03a087444f167160ef4edafe5b94f5533d290af6720d72e60335be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98079, "scanner": "repobility-docker", "fingerprint": "7ab9124a8d81d16165d9c5c4e073fa8714a7662352c1904d59c012b6fd9a9d0b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ab9124a8d81d16165d9c5c4e073fa8714a7662352c1904d59c012b6fd9a9d0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98078, "scanner": "repobility-docker", "fingerprint": "446aa18539947be7a2ec2d3fbde8f9286f2ba69095eb88dcff6da813f44a928a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|446aa18539947be7a2ec2d3fbde8f9286f2ba69095eb88dcff6da813f44a928a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fftw3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98075, "scanner": "repobility-docker", "fingerprint": "5f9b978dccf01f6fe4af2e2ef19c84310e7f164548472d739cefc86c9c7e0a62", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f9b978dccf01f6fe4af2e2ef19c84310e7f164548472d739cefc86c9c7e0a62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fftw3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98074, "scanner": "repobility-docker", "fingerprint": "e50148b9ea98bbaabc108d661a51824ed5807c57148d8073c41118a04e352a7b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e50148b9ea98bbaabc108d661a51824ed5807c57148d8073c41118a04e352a7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffms2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98071, "scanner": "repobility-docker", "fingerprint": "28145a4cea5101ca0fdf7912a2d77a21edf7ea2b8def776dc21ac72207c77bc1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28145a4cea5101ca0fdf7912a2d77a21edf7ea2b8def776dc21ac72207c77bc1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffms2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98070, "scanner": "repobility-docker", "fingerprint": "6af432546a6f5def6f7c20c9892effa79c2496b0cb06a5a93c55f6e97bacf5e0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6af432546a6f5def6f7c20c9892effa79c2496b0cb06a5a93c55f6e97bacf5e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98064, "scanner": "repobility-docker", "fingerprint": "e8e903308dd9eed73405e78e073fbcf43b94a612426c9d002f70789e3497b970", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8e903308dd9eed73405e78e073fbcf43b94a612426c9d002f70789e3497b970"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98063, "scanner": "repobility-docker", "fingerprint": "af548b02056492807fe715262d9c8f1787664b9b50c062d8d02b4b6e075cc5a7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|af548b02056492807fe715262d9c8f1787664b9b50c062d8d02b4b6e075cc5a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/feign/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98062, "scanner": "repobility-docker", "fingerprint": "0aade2750bfea80092236a16edf8ca985681dd360f4905a6a2fabb2271cdabd3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0aade2750bfea80092236a16edf8ca985681dd360f4905a6a2fabb2271cdabd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/feign/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98061, "scanner": "repobility-docker", "fingerprint": "b695503fdce504a196186deca504897dd31f0ab6c7c0e995e15f07995fb846c6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b695503fdce504a196186deca504897dd31f0ab6c7c0e995e15f07995fb846c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastjson2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98058, "scanner": "repobility-docker", "fingerprint": "c742ffb9b4948d169ff807bc1ba1a94c71a0faad9c323b05264018ee54485cf1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c742ffb9b4948d169ff807bc1ba1a94c71a0faad9c323b05264018ee54485cf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98057, "scanner": "repobility-docker", "fingerprint": "e0fc0648e7c07267b708b860e71f6c85bbc08dcd9cdb874d7f231c8a29a51d4a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0fc0648e7c07267b708b860e71f6c85bbc08dcd9cdb874d7f231c8a29a51d4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastjson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98056, "scanner": "repobility-docker", "fingerprint": "5ad89b5cff00f827f4594e789010f4479347f17e61d0092d8c839db8fd20e841", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ad89b5cff00f827f4594e789010f4479347f17e61d0092d8c839db8fd20e841"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98055, "scanner": "repobility-docker", "fingerprint": "daf1a08b6a38ec21327a46b568982830a8752018ee275fc265527b8380fd1e76", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|daf1a08b6a38ec21327a46b568982830a8752018ee275fc265527b8380fd1e76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastify/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98054, "scanner": "repobility-docker", "fingerprint": "2e900b591925cdfd4d6406a484fa38887c3624151201262cd7980b1fb29c88ff", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2e900b591925cdfd4d6406a484fa38887c3624151201262cd7980b1fb29c88ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fasthttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98053, "scanner": "repobility-docker", "fingerprint": "1c7c8244b46f9fd58da59bf9ef903a36e005f450f8433fc888d2c37e0ba61f07", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c7c8244b46f9fd58da59bf9ef903a36e005f450f8433fc888d2c37e0ba61f07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fasthttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98052, "scanner": "repobility-docker", "fingerprint": "7ea5a4f665f03edd4635776e50df36235798712bccecc928e624c935f1de0c0a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7ea5a4f665f03edd4635776e50df36235798712bccecc928e624c935f1de0c0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastcsv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98049, "scanner": "repobility-docker", "fingerprint": "7af0cc2c39b0fccbebd655411d688f3461b47c0596d953f4499e075e7845091c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7af0cc2c39b0fccbebd655411d688f3461b47c0596d953f4499e075e7845091c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastcsv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98048, "scanner": "repobility-docker", "fingerprint": "e9db5dee4e572beb2c098c29f0e6f7dd5a2204e484d91fa87a9b7ed261a929eb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9db5dee4e572beb2c098c29f0e6f7dd5a2204e484d91fa87a9b7ed261a929eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast_float/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98047, "scanner": "repobility-docker", "fingerprint": "d1dc4cd5cf7750d577a53c7a7742562073e280a7cace1b4d87d34e4566efcfd8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d1dc4cd5cf7750d577a53c7a7742562073e280a7cace1b4d87d34e4566efcfd8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast_float/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98046, "scanner": "repobility-docker", "fingerprint": "3bee10cff12461689f034679672b899fcd444f82cf29dee5457ca7b0bb1b50f2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3bee10cff12461689f034679672b899fcd444f82cf29dee5457ca7b0bb1b50f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-xml-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98045, "scanner": "repobility-docker", "fingerprint": "12d9d3362fcf58a4cca5eda8cfa587bce66fe234c4f8c0100067e5c2894723e2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12d9d3362fcf58a4cca5eda8cfa587bce66fe234c4f8c0100067e5c2894723e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-xml-parser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98044, "scanner": "repobility-docker", "fingerprint": "c03e17c2daf4e26f27e56a81989fc01249020d37a5b99d16d2961df7e1cf96fe", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c03e17c2daf4e26f27e56a81989fc01249020d37a5b99d16d2961df7e1cf96fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-dds/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98041, "scanner": "repobility-docker", "fingerprint": "07cccb6a6fcee83ca960f827e97476daf0c75e7100362cf651811291db6d36cb", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07cccb6a6fcee83ca960f827e97476daf0c75e7100362cf651811291db6d36cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-dds/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98040, "scanner": "repobility-docker", "fingerprint": "3f461f220dd298300ab84b4e8a9bae53fcbe9e73d53cdbafd377633f9207ba46", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3f461f220dd298300ab84b4e8a9bae53fcbe9e73d53cdbafd377633f9207ba46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/face/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98039, "scanner": "repobility-docker", "fingerprint": "4efb48233eca2b5faa52dc11be8dbd6ed498fb86b38b2949e3d2b1fca892c613", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4efb48233eca2b5faa52dc11be8dbd6ed498fb86b38b2949e3d2b1fca892c613"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/face/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98038, "scanner": "repobility-docker", "fingerprint": "1b61f2815506b681d718227ad1991d863af4ea6d90c35c397cc1384404ed482f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b61f2815506b681d718227ad1991d863af4ea6d90c35c397cc1384404ed482f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fabric/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98037, "scanner": "repobility-docker", "fingerprint": "42c23b61d37da379e2b7645325bceb0db2ea7d19353ea5f48c6fffa7ac939811", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42c23b61d37da379e2b7645325bceb0db2ea7d19353ea5f48c6fffa7ac939811"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fabric/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98036, "scanner": "repobility-docker", "fingerprint": "f6c9609fd043a6d9ca4b89b35d2ccff1b3994aebb698abc5328df258dfd9ff4c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6c9609fd043a6d9ca4b89b35d2ccff1b3994aebb698abc5328df258dfd9ff4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/faad2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98033, "scanner": "repobility-docker", "fingerprint": "9ea7366c0745a3e8869a30a779e4baeb2b066ec872c4b1f3393c8190f7064a3f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ea7366c0745a3e8869a30a779e4baeb2b066ec872c4b1f3393c8190f7064a3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/faad2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98032, "scanner": "repobility-docker", "fingerprint": "4f8fcbc51e66c743138133a7a368fdceefcf7eac337dddcdb00c7860ba8c7924", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f8fcbc51e66c743138133a7a368fdceefcf7eac337dddcdb00c7860ba8c7924"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exprtk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98029, "scanner": "repobility-docker", "fingerprint": "047d78dcb41bd224a5c7624688d720774cbd27431b4d5befcb26284472670392", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|047d78dcb41bd224a5c7624688d720774cbd27431b4d5befcb26284472670392"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exprtk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98028, "scanner": "repobility-docker", "fingerprint": "7bf7890ac4274ca2f30b73144d8adeb9686970fbb837788c4645479625410428", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7bf7890ac4274ca2f30b73144d8adeb9686970fbb837788c4645479625410428"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98027, "scanner": "repobility-docker", "fingerprint": "2b2564f791febe5bda02f0ec63cead9be2d4bdadb7f1012d9cef1041aa9910d6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b2564f791febe5bda02f0ec63cead9be2d4bdadb7f1012d9cef1041aa9910d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98026, "scanner": "repobility-docker", "fingerprint": "8aa66866e93dfdb7bbf045cbbb04205356353b271cb51b034707e9e39cfbfdc8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8aa66866e93dfdb7bbf045cbbb04205356353b271cb51b034707e9e39cfbfdc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expat/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98023, "scanner": "repobility-docker", "fingerprint": "1db5a64656ec865849890f0109629b77c98afe7d59ec0af97c787e32c528ed42", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1db5a64656ec865849890f0109629b77c98afe7d59ec0af97c787e32c528ed42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expat/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98022, "scanner": "repobility-docker", "fingerprint": "a7a041f39ca4951b241c9e0a25fc354c04f2f6223f07c6f2f05f5a5537884edb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7a041f39ca4951b241c9e0a25fc354c04f2f6223f07c6f2f05f5a5537884edb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exp4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98021, "scanner": "repobility-docker", "fingerprint": "c6c0e7f5cfeb1924f74815ef7f986861390d48091ccabfc7b288a6e147fce184", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c6c0e7f5cfeb1924f74815ef7f986861390d48091ccabfc7b288a6e147fce184"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exp4j/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98020, "scanner": "repobility-docker", "fingerprint": "1d98d3c83d1841159f09d4c058cc1e38222c377b1b9b49db840fdb019b9b3a26", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d98d3c83d1841159f09d4c058cc1e38222c377b1b9b49db840fdb019b9b3a26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exiv2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98019, "scanner": "repobility-docker", "fingerprint": "1b8a83963145dd97d1fe7902e4c1e2cd0229f3ab5402bee86e453fff758368d9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b8a83963145dd97d1fe7902e4c1e2cd0229f3ab5402bee86e453fff758368d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exiv2/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98018, "scanner": "repobility-docker", "fingerprint": "d29019af581500f5f8d2228406d0270ae7d3e9fc015e8ad2f709db3789f7e16b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d29019af581500f5f8d2228406d0270ae7d3e9fc015e8ad2f709db3789f7e16b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98015, "scanner": "repobility-docker", "fingerprint": "c23426f85dd8cbb1a5819025d4a8c1d45ad470523a6a64f9104bad750033521c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c23426f85dd8cbb1a5819025d4a8c1d45ad470523a6a64f9104bad750033521c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98014, "scanner": "repobility-docker", "fingerprint": "8fdea7f66bc4751b2fe28545d25f1e3d68e6d18971304aa6e2c4c42846eccf03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fdea7f66bc4751b2fe28545d25f1e3d68e6d18971304aa6e2c4c42846eccf03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/evo-inflector/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98013, "scanner": "repobility-docker", "fingerprint": "4a6f66a9f3adb55f9b3e0c7be0ae6dc674641aa76c77ebb8940c05c9e193f312", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a6f66a9f3adb55f9b3e0c7be0ae6dc674641aa76c77ebb8940c05c9e193f312"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/evo-inflector/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98012, "scanner": "repobility-docker", "fingerprint": "41ae1e8f0f4a227860104b10d9a5225c45e0b69850e73e80608595d439c2f71f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41ae1e8f0f4a227860104b10d9a5225c45e0b69850e73e80608595d439c2f71f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/etcd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98011, "scanner": "repobility-docker", "fingerprint": "739c9f38fb6d82f464383c2a8d97a1e3e4fe403c3d086286f3de3883ebf4dad1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|739c9f38fb6d82f464383c2a8d97a1e3e4fe403c3d086286f3de3883ebf4dad1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/etcd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98010, "scanner": "repobility-docker", "fingerprint": "4b10827993f8180d63f2e16a4d774463261fe07cb6bf6da893303d1e8552a851", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b10827993f8180d63f2e16a4d774463261fe07cb6bf6da893303d1e8552a851"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/et-xmlfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98006, "scanner": "repobility-docker", "fingerprint": "8cbf17394e3573a0afaac352a82936635ecc7af0a88f658803f4ddab1c75cd5f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cbf17394e3573a0afaac352a82936635ecc7af0a88f658803f4ddab1c75cd5f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/et-xmlfile/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98005, "scanner": "repobility-docker", "fingerprint": "c72cb09d49d555b62d2d6c4cf6070d9cfcfd5a773183cfccfe4cfb6539f6b987", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c72cb09d49d555b62d2d6c4cf6070d9cfcfd5a773183cfccfe4cfb6539f6b987"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/espeak-ng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 98002, "scanner": "repobility-docker", "fingerprint": "020d01b620eb092e7b4a177b4510f8d58c3bbc2fd1c13847145ee4e848633282", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|020d01b620eb092e7b4a177b4510f8d58c3bbc2fd1c13847145ee4e848633282"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/espeak-ng/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 98001, "scanner": "repobility-docker", "fingerprint": "fec346d9094036058311b58f91da7317908cb9276209ae86b5c64f2597601fc8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fec346d9094036058311b58f91da7317908cb9276209ae86b5c64f2597601fc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/esp-v2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 98000, "scanner": "repobility-docker", "fingerprint": "85d9bb8b8a64b1f18392ca2899547156a96dc0f16637aae28d91d5941fe2c779", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|85d9bb8b8a64b1f18392ca2899547156a96dc0f16637aae28d91d5941fe2c779"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/esp-v2/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97999, "scanner": "repobility-docker", "fingerprint": "e68c995d1f862db0789132ba41f2c24a8de6e9ff4ba107aa712f354f0154f9ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e68c995d1f862db0789132ba41f2c24a8de6e9ff4ba107aa712f354f0154f9ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/esp-v2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97998, "scanner": "repobility-docker", "fingerprint": "a5bdade0845b7f2e3a7ddac87a2a4825e5bd10fa0e6cf77bd54a3488b624b478", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:56905c98ae0083d14da0e7371184e694560a74750533f321ac0e9145af0e8d2e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5bdade0845b7f2e3a7ddac87a2a4825e5bd10fa0e6cf77bd54a3488b624b478"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/envoy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 97997, "scanner": "repobility-docker", "fingerprint": "24a167850d14e56bf9cddbcb459fa073d4d6cfd3b887ab832072f3d71f70edf2", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|24a167850d14e56bf9cddbcb459fa073d4d6cfd3b887ab832072f3d71f70edf2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/envoy/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97996, "scanner": "repobility-docker", "fingerprint": "8c911eccbc259f1752d16efcdb429c6a2cda772d9f8f99d321ff4309cee86a29", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8c911eccbc259f1752d16efcdb429c6a2cda772d9f8f99d321ff4309cee86a29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/elfutils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97993, "scanner": "repobility-docker", "fingerprint": "4dc90e9e970c6105f4f6fe389ae5d6670946122166ff88b483ae1762d5d0a54d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4dc90e9e970c6105f4f6fe389ae5d6670946122166ff88b483ae1762d5d0a54d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eigen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97990, "scanner": "repobility-docker", "fingerprint": "cfa7cd2c01d941bfa106b82e38eed010ffb161e666ce0f2e20c61dfad34b4d4b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cfa7cd2c01d941bfa106b82e38eed010ffb161e666ce0f2e20c61dfad34b4d4b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eigen/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97989, "scanner": "repobility-docker", "fingerprint": "99fbd9aa48efec9c94315f3509fd927b8262bebb878373ae3f95cedb9fc43883", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99fbd9aa48efec9c94315f3509fd927b8262bebb878373ae3f95cedb9fc43883"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/edk2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97986, "scanner": "repobility-docker", "fingerprint": "9b423c9fbf9e1f6963605f3df854acd38485a1333aa131caca1d7007ea4f061c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b423c9fbf9e1f6963605f3df854acd38485a1333aa131caca1d7007ea4f061c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/edk2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97985, "scanner": "repobility-docker", "fingerprint": "5e664ec5b4b090f508e0c48f7b67ea1c1ccb9530b5a1cc7791b247a3f8db1eb5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e664ec5b4b090f508e0c48f7b67ea1c1ccb9530b5a1cc7791b247a3f8db1eb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eclipse-equinox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97981, "scanner": "repobility-docker", "fingerprint": "4e0206951815e29abbe2d430fdc2b370771fa81c38e61d7f323acc5e760a3f6d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e0206951815e29abbe2d430fdc2b370771fa81c38e61d7f323acc5e760a3f6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eclipse-equinox/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97980, "scanner": "repobility-docker", "fingerprint": "8a8d68d51e2d34df75682fe3d8c66767d3dbcd7334b1caef4b796093f524ef81", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a8d68d51e2d34df75682fe3d8c66767d3dbcd7334b1caef4b796093f524ef81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecdsa-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97979, "scanner": "repobility-docker", "fingerprint": "8469f585ef0812ec632bb773a9f32c0059c379d42af2f1c495ac3ae2984861ed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8469f585ef0812ec632bb773a9f32c0059c379d42af2f1c495ac3ae2984861ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecdsa-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97978, "scanner": "repobility-docker", "fingerprint": "ebc27fad9e527fe8b5953d6a4eca8ebfa90baca00d5c2fbc0822e6eec0f10be7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ebc27fad9e527fe8b5953d6a4eca8ebfa90baca00d5c2fbc0822e6eec0f10be7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97977, "scanner": "repobility-docker", "fingerprint": "de582cee9029b93ca0ea6ee1a6acc4a00ba15abf9f2682bf9eb2d31d37ad3048", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de582cee9029b93ca0ea6ee1a6acc4a00ba15abf9f2682bf9eb2d31d37ad3048"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 43}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97973, "scanner": "repobility-docker", "fingerprint": "af79539c853c3af7e840b1793ee4122e5c0cb9454c39df94cafc4c4c66c3fc3b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|af79539c853c3af7e840b1793ee4122e5c0cb9454c39df94cafc4c4c66c3fc3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97972, "scanner": "repobility-docker", "fingerprint": "8b0087e38e863a2e8bfc05126474f6ea0aea3c6f18c0505d15638959b6d6f2a5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b0087e38e863a2e8bfc05126474f6ea0aea3c6f18c0505d15638959b6d6f2a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/easywsclient/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97969, "scanner": "repobility-docker", "fingerprint": "a6b3c30317b5968d9f723c46f7aa88b12255756a97ed4e0a6c9a3db652dc6c2f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6b3c30317b5968d9f723c46f7aa88b12255756a97ed4e0a6c9a3db652dc6c2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/easywsclient/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97968, "scanner": "repobility-docker", "fingerprint": "bf568c8966a7a22c6cacfffec1f17048caf82393834bd3c7a356bbc9cf38481e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf568c8966a7a22c6cacfffec1f17048caf82393834bd3c7a356bbc9cf38481e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/e2fsprogs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97965, "scanner": "repobility-docker", "fingerprint": "25eb0fa94499b2e794e8454c33c1308400df882117f035b5b36b087d857c926d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25eb0fa94499b2e794e8454c33c1308400df882117f035b5b36b087d857c926d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dulwich/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97964, "scanner": "repobility-docker", "fingerprint": "124031630a53c3f5b7e906abc230b6681420018d859fe1706966870eeb11f39e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|124031630a53c3f5b7e906abc230b6681420018d859fe1706966870eeb11f39e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/duckdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97963, "scanner": "repobility-docker", "fingerprint": "bb4596a63714115887b175f05f672f9e51c5ace729a16270ab03031f31a73c12", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bb4596a63714115887b175f05f672f9e51c5ace729a16270ab03031f31a73c12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/duckdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97962, "scanner": "repobility-docker", "fingerprint": "0c04bfb80ffa0e819459912d8153e5d032c9b3b3527de4c406c46388957895b5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c04bfb80ffa0e819459912d8153e5d032c9b3b3527de4c406c46388957895b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropwizard/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97961, "scanner": "repobility-docker", "fingerprint": "c37c0a16edaa8e60d2f382ae978c0ce8a47d2508fbd1a08b2996dac708d476d3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c37c0a16edaa8e60d2f382ae978c0ce8a47d2508fbd1a08b2996dac708d476d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropwizard/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97960, "scanner": "repobility-docker", "fingerprint": "483b8a512e2d95cbce57f72ee1065d12df837642a66447599feed41129a957ee", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|483b8a512e2d95cbce57f72ee1065d12df837642a66447599feed41129a957ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropbear/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97957, "scanner": "repobility-docker", "fingerprint": "3789860ae6fd82d75476f8a1595eb1d3f4048583edf638601f63418b94ff9461", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3789860ae6fd82d75476f8a1595eb1d3f4048583edf638601f63418b94ff9461"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropbear/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97956, "scanner": "repobility-docker", "fingerprint": "4b005daea3f26284cb9c1403f497d475d825dccb2fb87db5d2e26376fcaf1c42", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b005daea3f26284cb9c1403f497d475d825dccb2fb87db5d2e26376fcaf1c42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dragonfly/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97955, "scanner": "repobility-docker", "fingerprint": "371948a853ed6781b28cdb1809bfd66bfc8e2158848929a75b7ec3481e06cf9c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|371948a853ed6781b28cdb1809bfd66bfc8e2158848929a75b7ec3481e06cf9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/draco/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97952, "scanner": "repobility-docker", "fingerprint": "5aecfcf37a5004704076a533c24c6ba53f941274e69dfcb93e948b0908761280", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5aecfcf37a5004704076a533c24c6ba53f941274e69dfcb93e948b0908761280"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/draco/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97951, "scanner": "repobility-docker", "fingerprint": "fee948e334fb06019ccc07eb532d5988c8c3c9860638f27469adef675d046e74", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fee948e334fb06019ccc07eb532d5988c8c3c9860638f27469adef675d046e74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dovecot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97948, "scanner": "repobility-docker", "fingerprint": "ba3c1ffeb35f6b52d2c15d69d6964ff8184ed46703ab62163f256fa3c13c8bc8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba3c1ffeb35f6b52d2c15d69d6964ff8184ed46703ab62163f256fa3c13c8bc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dovecot/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97947, "scanner": "repobility-docker", "fingerprint": "edd24906e6255b7e47f7d5acb9d150bffb9a8b2a7f0889a44593e76732b08642", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|edd24906e6255b7e47f7d5acb9d150bffb9a8b2a7f0889a44593e76732b08642"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/double-conversion/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97945, "scanner": "repobility-docker", "fingerprint": "2b816cf2eca0b5bdbec9a7fb21d6e3832b884ae967f236465e3b3e171632fbd4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b816cf2eca0b5bdbec9a7fb21d6e3832b884ae967f236465e3b3e171632fbd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/double-conversion/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97944, "scanner": "repobility-docker", "fingerprint": "01541950c493a4b6b6135deabe3032f3f790322b9ea31c5c044271a08a3e037f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|01541950c493a4b6b6135deabe3032f3f790322b9ea31c5c044271a08a3e037f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dom4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97942, "scanner": "repobility-docker", "fingerprint": "e9753b1cf4de6dbc34bf47b29bff4a3dc994c8ca3b9319a3fe8f84c59a1e9ef6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9753b1cf4de6dbc34bf47b29bff4a3dc994c8ca3b9319a3fe8f84c59a1e9ef6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dom4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97941, "scanner": "repobility-docker", "fingerprint": "0284b2e24dc27d62230ac52b10b14d8ed87275a5026e28e8be88cd35de7bbdd3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0284b2e24dc27d62230ac52b10b14d8ed87275a5026e28e8be88cd35de7bbdd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docutils/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97938, "scanner": "repobility-docker", "fingerprint": "c29f3d147abe2b433eafde5ce6f8ea06ca5cd21e5bd5cfd4e3fa34ce377cbb21", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c29f3d147abe2b433eafde5ce6f8ea06ca5cd21e5bd5cfd4e3fa34ce377cbb21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docutils/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97937, "scanner": "repobility-docker", "fingerprint": "9c5e294219020883d8f5598ef0946fdfa0dc6ee208337f5af022f98567d31692", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c5e294219020883d8f5598ef0946fdfa0dc6ee208337f5af022f98567d31692"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docker-client/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97936, "scanner": "repobility-docker", "fingerprint": "2fb95725774515600a219bdab146353284e0229804b27dffa3ab8cbb86b02c98", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2fb95725774515600a219bdab146353284e0229804b27dffa3ab8cbb86b02c98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docker-client/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97935, "scanner": "repobility-docker", "fingerprint": "e8484b43ae73ec96ca4be523d1bcae4e53a8f9e4cbdeaa3ac5b0cc3a95622d19", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8484b43ae73ec96ca4be523d1bcae4e53a8f9e4cbdeaa3ac5b0cc3a95622d19"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnspython/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97934, "scanner": "repobility-docker", "fingerprint": "d4cf0b6f75340bb05a1c48a381f106aa160e80a3c2c5d3afd269bc3dc6ca1825", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4cf0b6f75340bb05a1c48a381f106aa160e80a3c2c5d3afd269bc3dc6ca1825"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnspython/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97933, "scanner": "repobility-docker", "fingerprint": "4ccc212b991b4390a8e04a29c794bd2dbfd930416decab85830ce7c789dd7fcb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4ccc212b991b4390a8e04a29c794bd2dbfd930416decab85830ce7c789dd7fcb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnsmasq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97930, "scanner": "repobility-docker", "fingerprint": "feb63993e8fe55c8739dc7e02faa718396c89b1f562c54f2d728737b1c84f999", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|feb63993e8fe55c8739dc7e02faa718396c89b1f562c54f2d728737b1c84f999"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnsmasq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97929, "scanner": "repobility-docker", "fingerprint": "807c403af4c101f3058c1c22a0a7b3733f1f213c08cb5e0a71910fcafca15453", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|807c403af4c101f3058c1c22a0a7b3733f1f213c08cb5e0a71910fcafca15453"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97926, "scanner": "repobility-docker", "fingerprint": "97ff4bb0eb694ee9819bbaacbddcecc0d812ec491836677d3fe367fb0f1a6c8c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|97ff4bb0eb694ee9819bbaacbddcecc0d812ec491836677d3fe367fb0f1a6c8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97925, "scanner": "repobility-docker", "fingerprint": "550de53544b52b840611112928ccec4ba22fc025cc67f9bbd22a704be4b98059", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|550de53544b52b840611112928ccec4ba22fc025cc67f9bbd22a704be4b98059"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97924, "scanner": "repobility-docker", "fingerprint": "aea0c64cde6900f35bdfdbf81fb1f123867161fb3d3731abc92df0ab5776b392", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aea0c64cde6900f35bdfdbf81fb1f123867161fb3d3731abc92df0ab5776b392"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97923, "scanner": "repobility-docker", "fingerprint": "022f514879ef24da80d4e9f49fe227fcfe28109fb40a792ad849092f2112fe65", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|022f514879ef24da80d4e9f49fe227fcfe28109fb40a792ad849092f2112fe65"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97920, "scanner": "repobility-docker", "fingerprint": "58bb396555c4a6cd15dae664a6056b5882409b390663eceb171b802a5657f9a3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58bb396555c4a6cd15dae664a6056b5882409b390663eceb171b802a5657f9a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/django/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97917, "scanner": "repobility-docker", "fingerprint": "51e782c74c0a59420a8d16c4b01edeaebb3400cb431c30641020659727baa64a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51e782c74c0a59420a8d16c4b01edeaebb3400cb431c30641020659727baa64a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/django/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97916, "scanner": "repobility-docker", "fingerprint": "4c6d474c51d38095dac05c91cc10d3529400dd96ee04cc39ddfe2f5dae7e2c02", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c6d474c51d38095dac05c91cc10d3529400dd96ee04cc39ddfe2f5dae7e2c02"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/distribution/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97915, "scanner": "repobility-docker", "fingerprint": "8114aaf661a4f9a495c8404b1922db6428409f5689f654cfb960b21e4bf34bac", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8114aaf661a4f9a495c8404b1922db6428409f5689f654cfb960b21e4bf34bac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/distribution/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97914, "scanner": "repobility-docker", "fingerprint": "0f893abaae3b96c2c98abb18eb96637f6363859f65d53e92848afe3e85355d82", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f893abaae3b96c2c98abb18eb96637f6363859f65d53e92848afe3e85355d82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/distlib/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97913, "scanner": "repobility-docker", "fingerprint": "e2d631b9d0550673e371b6ac7b7f2d9210c54fbf029abd2f7c23e8d65a0fdf35", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e2d631b9d0550673e371b6ac7b7f2d9210c54fbf029abd2f7c23e8d65a0fdf35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/distlib/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97912, "scanner": "repobility-docker", "fingerprint": "242352fbf5472c6f83eb3236f88c16b1fbf5e8680a44d3bc369cc53adacbf081", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python@sha256:d223a882810372830fd7968eb3e64533f3a2318c90be43ac753a46a15946faec", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|242352fbf5472c6f83eb3236f88c16b1fbf5e8680a44d3bc369cc53adacbf081"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dill/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97911, "scanner": "repobility-docker", "fingerprint": "97c21ba24b1c709e6365a9fa2ce83c944bcc51c7d3405cba28f0471a3c4b381b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|97c21ba24b1c709e6365a9fa2ce83c944bcc51c7d3405cba28f0471a3c4b381b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/digest/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97908, "scanner": "repobility-docker", "fingerprint": "578e0cb678308a48f1988f0eab5d58223ac9732c5023bb0d81571f6321efd587", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|578e0cb678308a48f1988f0eab5d58223ac9732c5023bb0d81571f6321efd587"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dgraph/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97907, "scanner": "repobility-docker", "fingerprint": "662b3e0326452e788f1bd6d5ce99ce23972c334661ae9c44c60779316c28d135", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|662b3e0326452e788f1bd6d5ce99ce23972c334661ae9c44c60779316c28d135"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/deno/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97905, "scanner": "repobility-docker", "fingerprint": "559e7da2b52100c17494a12bb9423741c532c0d0f88fe591c33676ab4d16b2d2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|559e7da2b52100c17494a12bb9423741c532c0d0f88fe591c33676ab4d16b2d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/deno/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97904, "scanner": "repobility-docker", "fingerprint": "6ed99e239c6add746eea6c1e81ec0b2568889efb591013cd7f1e4ba9b9c921bc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ed99e239c6add746eea6c1e81ec0b2568889efb591013cd7f1e4ba9b9c921bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/demangle/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97903, "scanner": "repobility-docker", "fingerprint": "eb7c3a7c4739f103ba51f22e28bc6ce1ab54eb589827a64205ff63a6f2d5de54", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eb7c3a7c4739f103ba51f22e28bc6ce1ab54eb589827a64205ff63a6f2d5de54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/demangle/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97902, "scanner": "repobility-docker", "fingerprint": "75ff38ccd2d528bf07f27197c8695fcc9de972a9956e4ff8499655b4508b2fb9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75ff38ccd2d528bf07f27197c8695fcc9de972a9956e4ff8499655b4508b2fb9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/defusedxml/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97901, "scanner": "repobility-docker", "fingerprint": "4cfb12e21b23aa329fdfa843ed36cdb03348a6eef6381e85cced3c9cda89c0dd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4cfb12e21b23aa329fdfa843ed36cdb03348a6eef6381e85cced3c9cda89c0dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/defusedxml/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97900, "scanner": "repobility-docker", "fingerprint": "9bdbfad28478ccfa9a7d58c5c6777b3ae6a0992aec775c9a3ee25becfdc73fc8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9bdbfad28478ccfa9a7d58c5c6777b3ae6a0992aec775c9a3ee25becfdc73fc8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/decorator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97899, "scanner": "repobility-docker", "fingerprint": "addec8ea69f1717d7b068f2233dcb68ee105159d36e3201ee75ad70e8e8be85a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|addec8ea69f1717d7b068f2233dcb68ee105159d36e3201ee75ad70e8e8be85a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/decorator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97898, "scanner": "repobility-docker", "fingerprint": "757c8918c8e074e5b102f72b3769059a1f62137f4ab3e8db935f6acce7d0fd0c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|757c8918c8e074e5b102f72b3769059a1f62137f4ab3e8db935f6acce7d0fd0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dcmtk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97897, "scanner": "repobility-docker", "fingerprint": "54b28e9a9ea1e2947e75761dcdb3e89ecdcf0e62c97142478732aaf2d1569b6c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54b28e9a9ea1e2947e75761dcdb3e89ecdcf0e62c97142478732aaf2d1569b6c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dcmtk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97896, "scanner": "repobility-docker", "fingerprint": "102ff6e93f13980f7249faacadbdf6bfbf0160f9d58dbcc417c0acf443c67dbc", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|102ff6e93f13980f7249faacadbdf6bfbf0160f9d58dbcc417c0acf443c67dbc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dbus-broker/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97895, "scanner": "repobility-docker", "fingerprint": "a29e15de1274bb5b4746fd93e008216b7e1b2c0d5f5233f96b2b0e5b5d08a409", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a29e15de1274bb5b4746fd93e008216b7e1b2c0d5f5233f96b2b0e5b5d08a409"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dav1d/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97893, "scanner": "repobility-docker", "fingerprint": "63b01b827b54f89c650bdf19543e24592222d56759736a06b2168762f0694118", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63b01b827b54f89c650bdf19543e24592222d56759736a06b2168762f0694118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dav1d/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97892, "scanner": "repobility-docker", "fingerprint": "6bf580d2b695065d7268484ac5e76ce2bf57525a5d83adbadc2636fc7ec4d0c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6bf580d2b695065d7268484ac5e76ce2bf57525a5d83adbadc2636fc7ec4d0c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dateparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97891, "scanner": "repobility-docker", "fingerprint": "d3e64ba1c5516e3ddc52a6b85fe33af5bb0ace9d325c67363931edf0dce7a21d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3e64ba1c5516e3ddc52a6b85fe33af5bb0ace9d325c67363931edf0dce7a21d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dateparser/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97890, "scanner": "repobility-docker", "fingerprint": "8f18f043902612098f2d28a9403b4f1a39a2baf6c890c094bf2ab119e116b6fa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f18f043902612098f2d28a9403b4f1a39a2baf6c890c094bf2ab119e116b6fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/data-encoding/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97887, "scanner": "repobility-docker", "fingerprint": "5a891b55c5640e551ba57e8ec9970b56a2e63c9da867bda2567cb6efa07799d2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a891b55c5640e551ba57e8ec9970b56a2e63c9da867bda2567cb6efa07799d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/data-encoding/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97886, "scanner": "repobility-docker", "fingerprint": "bf72b3991d95d49ae22b4975306a04542bbbeca1fc8936f6b0851c934d17a7d2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf72b3991d95d49ae22b4975306a04542bbbeca1fc8936f6b0851c934d17a7d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dask/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97883, "scanner": "repobility-docker", "fingerprint": "fff355461b53149870bbd078e564c1d252faa3da3f5c8d8f3dedc1eac47febc1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fff355461b53149870bbd078e564c1d252faa3da3f5c8d8f3dedc1eac47febc1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dask/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97882, "scanner": "repobility-docker", "fingerprint": "ebb882ca6effa1873a1a29c499451c9620bc9e09522898861f51e807a2b8e829", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ebb882ca6effa1873a1a29c499451c9620bc9e09522898861f51e807a2b8e829"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dart/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97879, "scanner": "repobility-docker", "fingerprint": "eea45ad805fc4deb62b8d2331bf1dcefdeb6ccf147f6a8fb4ac207ed8ce7b314", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eea45ad805fc4deb62b8d2331bf1dcefdeb6ccf147f6a8fb4ac207ed8ce7b314"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dapr/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97878, "scanner": "repobility-docker", "fingerprint": "3fe819cb4018995ad6de70006298154dadac90a1128c594d6285dafb80dce923", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fe819cb4018995ad6de70006298154dadac90a1128c594d6285dafb80dce923"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/d3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97877, "scanner": "repobility-docker", "fingerprint": "376959f4aa3bf6ec4b0b14c115453842f1f761370ce58a025f4f7cf550143a60", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|376959f4aa3bf6ec4b0b14c115453842f1f761370ce58a025f4f7cf550143a60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/d3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97876, "scanner": "repobility-docker", "fingerprint": "b6eead046f3f27f77da8771180e2565a31e843cf6e6f996b088233b94a2e6856", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b6eead046f3f27f77da8771180e2565a31e843cf6e6f996b088233b94a2e6856"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cyclonedds/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97873, "scanner": "repobility-docker", "fingerprint": "a8d10e309e59540cba6dab5484510089c119e808b5d97028e9a4d64424614c42", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a8d10e309e59540cba6dab5484510089c119e808b5d97028e9a4d64424614c42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cyclonedds/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97872, "scanner": "repobility-docker", "fingerprint": "02132897468de64e9e824277c3f13914501a9067e195bd0ca85aa84fdaec0a77", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02132897468de64e9e824277c3f13914501a9067e195bd0ca85aa84fdaec0a77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cxxopts/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97869, "scanner": "repobility-docker", "fingerprint": "635a3334081c01c6c4e76b465a1c31826e4dd86af1187db2a9234a6baf68e7c1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|635a3334081c01c6c4e76b465a1c31826e4dd86af1187db2a9234a6baf68e7c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/curvesapi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97868, "scanner": "repobility-docker", "fingerprint": "4c67b902bb705da0e818f35db33aee81a31863482a84a8f4714244e98a31169e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c67b902bb705da0e818f35db33aee81a31863482a84a8f4714244e98a31169e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/curvesapi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97867, "scanner": "repobility-docker", "fingerprint": "435221ead9290bd07bb28bb7802efbc5d16033e3d21d4044d83b8e9854544dd5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|435221ead9290bd07bb28bb7802efbc5d16033e3d21d4044d83b8e9854544dd5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/curl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97866, "scanner": "repobility-docker", "fingerprint": "984fc6cfb98db4df6418fc11700d5efd3b4c86c9ada9ff9784a3d9072d29856f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|984fc6cfb98db4df6418fc11700d5efd3b4c86c9ada9ff9784a3d9072d29856f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97861, "scanner": "repobility-docker", "fingerprint": "d63a4fddf4b2d99ea062d2b7f794411da0e3baa295a59e2cf233b3210bcecd6e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d63a4fddf4b2d99ea062d2b7f794411da0e3baa295a59e2cf233b3210bcecd6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97860, "scanner": "repobility-docker", "fingerprint": "ce1a9a109be20d4bc58818edcd6c576803b4b41378914c1e39a6e76e51f832d2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce1a9a109be20d4bc58818edcd6c576803b4b41378914c1e39a6e76e51f832d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97857, "scanner": "repobility-docker", "fingerprint": "8915919b41bff805f1d8a24bbc2a8a1aaf4072ffd01a94c5584cd0b97871cade", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8915919b41bff805f1d8a24bbc2a8a1aaf4072ffd01a94c5584cd0b97871cade"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97856, "scanner": "repobility-docker", "fingerprint": "3d1ea938598fbb73820a5f921ea5267315a33f54210372ea9fcfdce43f5895c4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3d1ea938598fbb73820a5f921ea5267315a33f54210372ea9fcfdce43f5895c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cubefs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97855, "scanner": "repobility-docker", "fingerprint": "1ea8bd4ac9a9dbd62e25f13ee9c02fd62dc1c5bca0bb8567420905ad19e510fd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ea8bd4ac9a9dbd62e25f13ee9c02fd62dc1c5bca0bb8567420905ad19e510fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cssselect/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97854, "scanner": "repobility-docker", "fingerprint": "3e2497b1fb0d8cc489284d8c1038ed27797dc4b5f4c03793c8734db0a67f4c08", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e2497b1fb0d8cc489284d8c1038ed27797dc4b5f4c03793c8734db0a67f4c08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cssselect/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97853, "scanner": "repobility-docker", "fingerprint": "33988aba435471a82b87aee70f90e993648670c5344d7b4c56226253890c767e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33988aba435471a82b87aee70f90e993648670c5344d7b4c56226253890c767e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptsetup/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97852, "scanner": "repobility-docker", "fingerprint": "e25b2f215af29f60988d5cbfa253ccf48b6971052c82d96f9ff11a55cb411ea7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e25b2f215af29f60988d5cbfa253ccf48b6971052c82d96f9ff11a55cb411ea7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptsetup/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97851, "scanner": "repobility-docker", "fingerprint": "810f90f1d2dff838e64835bdc4eb6c0483217aa60dace7e99a8a8a3ef511cd5f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|810f90f1d2dff838e64835bdc4eb6c0483217aa60dace7e99a8a8a3ef511cd5f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptography/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97847, "scanner": "repobility-docker", "fingerprint": "82a507faa3421839f0341f588ebe823016ec4a485ff5a2d9c0fddd6a0089f0c7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust@sha256:c5216a9896a598dced7ce6708bb3226e443473f567045b4f282595776cc641f1", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82a507faa3421839f0341f588ebe823016ec4a485ff5a2d9c0fddd6a0089f0c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptofuzz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97842, "scanner": "repobility-docker", "fingerprint": "2ab794060b04f1a62f414a31a6d581884732745ba676be95a619dab3344c593d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ab794060b04f1a62f414a31a6d581884732745ba676be95a619dab3344c593d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97839, "scanner": "repobility-docker", "fingerprint": "4ddfe15d136d84a0202a2e1cbd332d7b34e0457f0b57ff829ed3ea5764364901", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4ddfe15d136d84a0202a2e1cbd332d7b34e0457f0b57ff829ed3ea5764364901"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97838, "scanner": "repobility-docker", "fingerprint": "fa5783fd529dce180fe6c01c115948a2459b8556a662d52c8fd1877a3b3a8fae", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fa5783fd529dce180fe6c01c115948a2459b8556a662d52c8fd1877a3b3a8fae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crosvm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97836, "scanner": "repobility-docker", "fingerprint": "89959839ab8849ed68357799972298b21d45e57a753de0c354478dc8483ee747", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|89959839ab8849ed68357799972298b21d45e57a753de0c354478dc8483ee747"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crosvm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97835, "scanner": "repobility-docker", "fingerprint": "e1ea5d0c5719ee356001d6a3aa7c281d25e3fc5872d1329a98bd5b1037fb9b00", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e1ea5d0c5719ee356001d6a3aa7c281d25e3fc5872d1329a98bd5b1037fb9b00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crossplane/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97834, "scanner": "repobility-docker", "fingerprint": "c006315c0f3c0fc472e90a64a4aa41783d666ae2f302445d53a296bd56c58bf5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c006315c0f3c0fc472e90a64a4aa41783d666ae2f302445d53a296bd56c58bf5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crossplane/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97833, "scanner": "repobility-docker", "fingerprint": "e22478026705af40f97f9171f412fcc6b968375824409c3daf537f4d190839c2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e22478026705af40f97f9171f412fcc6b968375824409c3daf537f4d190839c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/croniter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97832, "scanner": "repobility-docker", "fingerprint": "58406401369772e061ac223605e3b3ba560bae7651136efc8c22b8768a4eefd4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58406401369772e061ac223605e3b3ba560bae7651136efc8c22b8768a4eefd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/croniter/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97831, "scanner": "repobility-docker", "fingerprint": "f2d29a22072722f6eee1fe33ed56afc77b290928273306b548d9b4c110c105eb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2d29a22072722f6eee1fe33ed56afc77b290928273306b548d9b4c110c105eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cron-utils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97830, "scanner": "repobility-docker", "fingerprint": "5fa2066211dd02cd5523dadb8ece2e009a565e997bc9f367a0a2a0094102f1d4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5fa2066211dd02cd5523dadb8ece2e009a565e997bc9f367a0a2a0094102f1d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cron-utils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97829, "scanner": "repobility-docker", "fingerprint": "1be4a9dc5a616e1b846b1d5831bfbc28000309fde7775d68a7b4e2c07f8325b3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1be4a9dc5a616e1b846b1d5831bfbc28000309fde7775d68a7b4e2c07f8325b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/croaring/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97826, "scanner": "repobility-docker", "fingerprint": "8d84cc231cc2b1b7181c7bbb08f1cd743c4d627f0a343ebb499aa37d88253af0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d84cc231cc2b1b7181c7bbb08f1cd743c4d627f0a343ebb499aa37d88253af0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cri-o/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97823, "scanner": "repobility-docker", "fingerprint": "308ab454ad9dd9d8e2feac05f684e4457bef4888f89ee99ab3b6d233947db9f1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|308ab454ad9dd9d8e2feac05f684e4457bef4888f89ee99ab3b6d233947db9f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cri-o/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97822, "scanner": "repobility-docker", "fingerprint": "62dd2dd16c009c4b7a2e9acc250a8392420ea5100b6184b5ea0aaf2485eb97ca", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62dd2dd16c009c4b7a2e9acc250a8392420ea5100b6184b5ea0aaf2485eb97ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cri-o/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97821, "scanner": "repobility-docker", "fingerprint": "ec89f9ed95d1a2a7b774bbfe91673014f4ce66a4eead59765abf3b063738d295", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ec89f9ed95d1a2a7b774bbfe91673014f4ce66a4eead59765abf3b063738d295"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cras/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97819, "scanner": "repobility-docker", "fingerprint": "cf7f1e5eeed7bbd9e7ca98b8a664f62b92490e521fd7d089dd86e04336a61dba", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf7f1e5eeed7bbd9e7ca98b8a664f62b92490e521fd7d089dd86e04336a61dba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cras/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97818, "scanner": "repobility-docker", "fingerprint": "8d140b0e5768504d4014678521fb1a135d7620f0819765520166917613bcc36f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d140b0e5768504d4014678521fb1a135d7620f0819765520166917613bcc36f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpython3/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97815, "scanner": "repobility-docker", "fingerprint": "d9dd95bc1a3bcf8642315e458b45715aa819b234fd1d3e1f99f20fa395d40dcf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d9dd95bc1a3bcf8642315e458b45715aa819b234fd1d3e1f99f20fa395d40dcf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpython3/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97814, "scanner": "repobility-docker", "fingerprint": "283f01c0553a3a39f0cb4216b9704f92bc6cfc1b986e6e4759bec5fe2de9876a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|283f01c0553a3a39f0cb4216b9704f92bc6cfc1b986e6e4759bec5fe2de9876a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpuinfo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97811, "scanner": "repobility-docker", "fingerprint": "322c2fe8ae55b53861f0052fb12fb41db835d96b201c2b3d0a63fa70ee91d489", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|322c2fe8ae55b53861f0052fb12fb41db835d96b201c2b3d0a63fa70ee91d489"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpuinfo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97810, "scanner": "repobility-docker", "fingerprint": "967a7cfe7291133aecfee9c8a12224524487fb6ceef4fc19d1965c75d091019d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|967a7cfe7291133aecfee9c8a12224524487fb6ceef4fc19d1965c75d091019d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppitertools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97807, "scanner": "repobility-docker", "fingerprint": "48fbd553bd55794cbd2fc1695909086772f8ed183079f980a6086d17756ed5f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|48fbd553bd55794cbd2fc1695909086772f8ed183079f980a6086d17756ed5f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppitertools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97806, "scanner": "repobility-docker", "fingerprint": "f21171459355d27d0109a2f20c7072921e8ad14aadc48ec147ff7765d291475f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f21171459355d27d0109a2f20c7072921e8ad14aadc48ec147ff7765d291475f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppcheck/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97805, "scanner": "repobility-docker", "fingerprint": "4bbc1ae26a9bb21fd7ef3887d34c5ef10fb74f587724b2d65d72f59418979f07", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4bbc1ae26a9bb21fd7ef3887d34c5ef10fb74f587724b2d65d72f59418979f07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppcheck/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97804, "scanner": "repobility-docker", "fingerprint": "fd98dc23e5d4cc35abd2ce9dfbd781c6e16693b308304a08afcfee64cc33eec9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd98dc23e5d4cc35abd2ce9dfbd781c6e16693b308304a08afcfee64cc33eec9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97798, "scanner": "repobility-docker", "fingerprint": "4748007f6645a02f39237e5d46d26ad72626d7637240b9acf0b6db43914cec23", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4748007f6645a02f39237e5d46d26ad72626d7637240b9acf0b6db43914cec23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97797, "scanner": "repobility-docker", "fingerprint": "6316ac7054d32f4c7f5308fea1c46866b0e9fca480950492ac66b8710b29687e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6316ac7054d32f4c7f5308fea1c46866b0e9fca480950492ac66b8710b29687e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coveragepy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97794, "scanner": "repobility-docker", "fingerprint": "c6a2d08fca255b0f7b09f2f95881795437189d18f7bae9be0bff47c572bd81fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c6a2d08fca255b0f7b09f2f95881795437189d18f7bae9be0bff47c572bd81fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coveragepy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97793, "scanner": "repobility-docker", "fingerprint": "d3a1008067217d494c677a1a369e5dd3d4c1707072d307f29733a2422360a46a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3a1008067217d494c677a1a369e5dd3d4c1707072d307f29733a2422360a46a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coturn/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97790, "scanner": "repobility-docker", "fingerprint": "70538dc922360ee1d938915615d3a50103dd5ab7e15cee57aa17d79038faa1e9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|70538dc922360ee1d938915615d3a50103dd5ab7e15cee57aa17d79038faa1e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cosmos-sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97789, "scanner": "repobility-docker", "fingerprint": "46c7eb726dff9546e8444f118df59bcecbf22e530c1e93c6b22a774223eb83dc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|46c7eb726dff9546e8444f118df59bcecbf22e530c1e93c6b22a774223eb83dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cosmos-sdk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97788, "scanner": "repobility-docker", "fingerprint": "2d42d19e2441b87ec9180e9fbc099db6f4067b93c0ad116eaf372d79aab922e1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2d42d19e2441b87ec9180e9fbc099db6f4067b93c0ad116eaf372d79aab922e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cosign/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97787, "scanner": "repobility-docker", "fingerprint": "32eea4993626aa02f2101f8c91bf33ca97cf5679626349464cfdbffdb113615a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|32eea4993626aa02f2101f8c91bf33ca97cf5679626349464cfdbffdb113615a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/containerd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97784, "scanner": "repobility-docker", "fingerprint": "723daa30d11f15b8922a30f6136f958766c1b71ce39950faaee6f585f89a32d4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|723daa30d11f15b8922a30f6136f958766c1b71ce39950faaee6f585f89a32d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/connexion/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97783, "scanner": "repobility-docker", "fingerprint": "89d3a5006fec36abe1c809cc7b238144654d0d8028f6d616b3251128e5b53f64", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|89d3a5006fec36abe1c809cc7b238144654d0d8028f6d616b3251128e5b53f64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/connexion/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97782, "scanner": "repobility-docker", "fingerprint": "c846e912a31de8995f61732b06ed5f2e9da13b22c2049dd6a4599bc688fdd5a9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c846e912a31de8995f61732b06ed5f2e9da13b22c2049dd6a4599bc688fdd5a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/connectedhomeip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97779, "scanner": "repobility-docker", "fingerprint": "ee938fa8f4f80743ed9f6533af88e89a5ce95e7b9d363324e818b3c77d5ee50b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee938fa8f4f80743ed9f6533af88e89a5ce95e7b9d363324e818b3c77d5ee50b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/configparser/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97777, "scanner": "repobility-docker", "fingerprint": "726675bc9788c1f0911ea6b4cf015e943af8713e7895593f22258ce22173cbe4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|726675bc9788c1f0911ea6b4cf015e943af8713e7895593f22258ce22173cbe4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/configparser/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97776, "scanner": "repobility-docker", "fingerprint": "a5f27ddfe9e5bef5e9396a00c85e8f6ab4f0dbccc268b82739a6727bb5cce682", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5f27ddfe9e5bef5e9396a00c85e8f6ab4f0dbccc268b82739a6727bb5cce682"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/config-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97775, "scanner": "repobility-docker", "fingerprint": "0ec3d9a01cac0fc5492073e8a322a30fcf555c4fa7c80dce060e451fff9f98fe", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ec3d9a01cac0fc5492073e8a322a30fcf555c4fa7c80dce060e451fff9f98fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/config-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97774, "scanner": "repobility-docker", "fingerprint": "26684f6a107dcb8a718a16fe1b80a3a25494bc055c32d9ec86d3f6033572dfc2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26684f6a107dcb8a718a16fe1b80a3a25494bc055c32d9ec86d3f6033572dfc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/compress/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97773, "scanner": "repobility-docker", "fingerprint": "fd4a47aba5c9f504db9f2aee3feff0bf1aea383c72739cd5d7a7671ccebc5091", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd4a47aba5c9f504db9f2aee3feff0bf1aea383c72739cd5d7a7671ccebc5091"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/compress/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97772, "scanner": "repobility-docker", "fingerprint": "64a731caf6e6c71192ff325ef5660251db5f6f8a6567f9662f5738c36c6ca615", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|64a731caf6e6c71192ff325ef5660251db5f6f8a6567f9662f5738c36c6ca615"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cockroachdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97769, "scanner": "repobility-docker", "fingerprint": "6a0248a5061910a411fae16ceb3ac180de63b2a9947542b123ea5cb816d65759", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a0248a5061910a411fae16ceb3ac180de63b2a9947542b123ea5cb816d65759"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cockroachdb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97768, "scanner": "repobility-docker", "fingerprint": "b18edf4aa19fc305a9f4598bf7257ddc631637b26b9848c92328354c55535415", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b18edf4aa19fc305a9f4598bf7257ddc631637b26b9848c92328354c55535415"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmark/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97765, "scanner": "repobility-docker", "fingerprint": "889d48aa2d0ba129b08310cdd7dfdaca9aa7a560c61bcfacc469dce157093d9f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|889d48aa2d0ba129b08310cdd7dfdaca9aa7a560c61bcfacc469dce157093d9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmark/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97764, "scanner": "repobility-docker", "fingerprint": "4ee494e05afe7d7acd9326d5d5cdf8912b2bf4f866ceca984c28b852be8ca815", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4ee494e05afe7d7acd9326d5d5cdf8912b2bf4f866ceca984c28b852be8ca815"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmake/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97761, "scanner": "repobility-docker", "fingerprint": "e77ba7e43ad33c024c12902b667c1197eee0e5adc61b9489b76644256761036c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e77ba7e43ad33c024c12902b667c1197eee0e5adc61b9489b76644256761036c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmake/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97760, "scanner": "repobility-docker", "fingerprint": "970f1d4ec19033aea6af63e0f19f1b0b23594616b138d378c804ca59041c85d1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|970f1d4ec19033aea6af63e0f19f1b0b23594616b138d378c804ca59041c85d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-hypervisor/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 97759, "scanner": "repobility-docker", "fingerprint": "575aa366bfad6c740412d2c754057956df0dae1eef85a6ba15af0ab920a7b575", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|575aa366bfad6c740412d2c754057956df0dae1eef85a6ba15af0ab920a7b575"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-hypervisor/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97758, "scanner": "repobility-docker", "fingerprint": "4a6ef8d4958ac856a7828013a12302bbf624aefa6592994e62c4c4a69f0b20f5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a6ef8d4958ac856a7828013a12302bbf624aefa6592994e62c4c4a69f0b20f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-hypervisor/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97757, "scanner": "repobility-docker", "fingerprint": "1a670c8f25941961b2a8db54af7515554f8e33ec065c536408172b983989af0e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a670c8f25941961b2a8db54af7515554f8e33ec065c536408172b983989af0e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97754, "scanner": "repobility-docker", "fingerprint": "e53a5d6320edbe45d02bddf6e862ec43f2af8d65b31048b8753a675398cdb03c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e53a5d6320edbe45d02bddf6e862ec43f2af8d65b31048b8753a675398cdb03c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/closure-library/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97753, "scanner": "repobility-docker", "fingerprint": "5437ff03b80c7e5ec5069e8bb2007836b79a4260be50f02a40e8bd16c50577ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5437ff03b80c7e5ec5069e8bb2007836b79a4260be50f02a40e8bd16c50577ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/closure-library/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97752, "scanner": "repobility-docker", "fingerprint": "63fa803848f9e72dc67de87d7d938dcea1729a6e5139434bf54eac9b3f66a2d8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63fa803848f9e72dc67de87d7d938dcea1729a6e5139434bf54eac9b3f66a2d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/closure-compiler/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97751, "scanner": "repobility-docker", "fingerprint": "818bf4a6909ff6ee5a1731fffe3fc4858ab82b303d1e380eebdecf30c97991b5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|818bf4a6909ff6ee5a1731fffe3fc4858ab82b303d1e380eebdecf30c97991b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clock/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97750, "scanner": "repobility-docker", "fingerprint": "63b8d94943ba98ab88e73df40bbacd037288c3e24946b93ed9955d155fe0462d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63b8d94943ba98ab88e73df40bbacd037288c3e24946b93ed9955d155fe0462d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clock/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97749, "scanner": "repobility-docker", "fingerprint": "8dacdf89e1595fcdd61f65731d2e39946364e039711d26e3f6e5fbc17f6d39f7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8dacdf89e1595fcdd61f65731d2e39946364e039711d26e3f6e5fbc17f6d39f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clickhouse/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97747, "scanner": "repobility-docker", "fingerprint": "235e3203503c45cacde2dc97d9ee518678e65037aefd72246848226d1371221d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|235e3203503c45cacde2dc97d9ee518678e65037aefd72246848226d1371221d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/click/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97746, "scanner": "repobility-docker", "fingerprint": "477f7ab2f662e71eea52f24cac72341773974d045c114167ce048e759795807a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|477f7ab2f662e71eea52f24cac72341773974d045c114167ce048e759795807a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/click/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97745, "scanner": "repobility-docker", "fingerprint": "0715fc026ea059d1d8aeb7da04b355373e1cecf36d4e61f81cd45abbca3404d6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0715fc026ea059d1d8aeb7da04b355373e1cecf36d4e61f81cd45abbca3404d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97742, "scanner": "repobility-docker", "fingerprint": "4c29246bfeb0cd7b6227280797a820ae71a2a56d637d33810dcf037f96b5085e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c29246bfeb0cd7b6227280797a820ae71a2a56d637d33810dcf037f96b5085e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97741, "scanner": "repobility-docker", "fingerprint": "83cb0368be30caa1bbd5f5eca140994552a1504e0778e07637712d9b313067bd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|83cb0368be30caa1bbd5f5eca140994552a1504e0778e07637712d9b313067bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97736, "scanner": "repobility-docker", "fingerprint": "a91df25f70a06ba186b581d998d6055e00f40de1ac320bbbbcfbd048d09d0b08", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a91df25f70a06ba186b581d998d6055e00f40de1ac320bbbbcfbd048d09d0b08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97735, "scanner": "repobility-docker", "fingerprint": "da977da9c10efbd64e4387671cbe7afaa28b14abfc4679efc113b90713569064", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|da977da9c10efbd64e4387671cbe7afaa28b14abfc4679efc113b90713569064"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97732, "scanner": "repobility-docker", "fingerprint": "51c5c38c724e5943fd27fc21c42d11262ce64b38e96658b2b64d7a0a9aa7f4b5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51c5c38c724e5943fd27fc21c42d11262ce64b38e96658b2b64d7a0a9aa7f4b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97731, "scanner": "repobility-docker", "fingerprint": "93a4be5db704de53842f60c8ef27f8ae4555224a4c33d315e936a47511c4a0e8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93a4be5db704de53842f60c8ef27f8ae4555224a4c33d315e936a47511c4a0e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/civetweb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97728, "scanner": "repobility-docker", "fingerprint": "210d7a387d6ace6930ed6c8f9608f1fc39f7a423a58b22f49a643876510e7e0c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|210d7a387d6ace6930ed6c8f9608f1fc39f7a423a58b22f49a643876510e7e0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/civetweb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97727, "scanner": "repobility-docker", "fingerprint": "330dfe13eccdd9eb733fe9f4f318eacde2e98f9b6ac8f519820f4e49dcf09a39", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|330dfe13eccdd9eb733fe9f4f318eacde2e98f9b6ac8f519820f4e49dcf09a39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cirq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97726, "scanner": "repobility-docker", "fingerprint": "55cd3a584957f2e4aff9a88d94a8069c1692e1db4ef72dfba53deaccc84b7f04", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55cd3a584957f2e4aff9a88d94a8069c1692e1db4ef72dfba53deaccc84b7f04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cirq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97725, "scanner": "repobility-docker", "fingerprint": "16769e62755c0e58f186b0a755bd2f47f176fdd1cdcd33d77419d9fc7237c36a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16769e62755c0e58f186b0a755bd2f47f176fdd1cdcd33d77419d9fc7237c36a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/circl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97722, "scanner": "repobility-docker", "fingerprint": "40fc2c9bfaa89abc48b618696abc0eab852e83bb64e2455e9a586cdf85ca34a6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|40fc2c9bfaa89abc48b618696abc0eab852e83bb64e2455e9a586cdf85ca34a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/circl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97721, "scanner": "repobility-docker", "fingerprint": "be19594ccc9c0316e9cd4adf67e5dbac9a61385643cd2a6c31834294e0119276", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be19594ccc9c0316e9cd4adf67e5dbac9a61385643cd2a6c31834294e0119276"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cilium/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97718, "scanner": "repobility-docker", "fingerprint": "42972d9a0b099b20eaa773716c83267e4bf557f2d6968c98d7392afc7bdfead2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42972d9a0b099b20eaa773716c83267e4bf557f2d6968c98d7392afc7bdfead2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cilium/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97717, "scanner": "repobility-docker", "fingerprint": "464a379b7fa0016b451e0aa61a146d87ccc0ce31af6ac6ce264108938a3924b4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|464a379b7fa0016b451e0aa61a146d87ccc0ce31af6ac6ce264108938a3924b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cifuzz-example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97716, "scanner": "repobility-docker", "fingerprint": "47f0da2cc6fa36a0e4c508e6d8240f7966e9390ce3429acd73c3b4e0689c7e59", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47f0da2cc6fa36a0e4c508e6d8240f7966e9390ce3429acd73c3b4e0689c7e59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/chrono/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97715, "scanner": "repobility-docker", "fingerprint": "c95cbd2c2af0741504a855dec8c4392a0c789af11e4f119aae825030a71175df", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c95cbd2c2af0741504a855dec8c4392a0c789af11e4f119aae825030a71175df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/chrono/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97714, "scanner": "repobility-docker", "fingerprint": "1941871b76fb9663f9b5e4ac0c8f51d8e3b738981fb2b30ccb1edcbfe9a426c7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1941871b76fb9663f9b5e4ac0c8f51d8e3b738981fb2b30ccb1edcbfe9a426c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checkstyle/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97713, "scanner": "repobility-docker", "fingerprint": "004c01a890b1b4c2900c7f2bee43595e8f8c820c8a61f27887c9de9f8379125e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|004c01a890b1b4c2900c7f2bee43595e8f8c820c8a61f27887c9de9f8379125e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checkstyle/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97712, "scanner": "repobility-docker", "fingerprint": "8cea52b0a0ee93d60944d7fb32507ef4aa2f3dafe4f6f5ea1e800f6b5fb46d7c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cea52b0a0ee93d60944d7fb32507ef4aa2f3dafe4f6f5ea1e800f6b5fb46d7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checker-framework/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97709, "scanner": "repobility-docker", "fingerprint": "d845d348ebe6df4fd98d2da191dac3068ee875133d861a6018c3f8dd015cdf61", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d845d348ebe6df4fd98d2da191dac3068ee875133d861a6018c3f8dd015cdf61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checker-framework/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97708, "scanner": "repobility-docker", "fingerprint": "47b85628822b7cb742a15e5e6e106856368e7312c0d161817b7cf45bfe43fe7b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47b85628822b7cb742a15e5e6e106856368e7312c0d161817b7cf45bfe43fe7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/charset_normalizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97705, "scanner": "repobility-docker", "fingerprint": "9e84eb12a5a32e19e0e05141056a024fce50109ec5f400355e1749119e4cf91e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e84eb12a5a32e19e0e05141056a024fce50109ec5f400355e1749119e4cf91e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/charset_normalizer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97704, "scanner": "repobility-docker", "fingerprint": "290b275be4e5498a2aa0b8f93816c012e1df5753e1fdffcc24372afca062241c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|290b275be4e5498a2aa0b8f93816c012e1df5753e1fdffcc24372afca062241c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/chardet/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97703, "scanner": "repobility-docker", "fingerprint": "45206b6ea6439f5c78b89a568bae5d1a457173d965ec0cf15460478674f68ca7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45206b6ea6439f5c78b89a568bae5d1a457173d965ec0cf15460478674f68ca7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/chardet/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97702, "scanner": "repobility-docker", "fingerprint": "9ddfe0cd6cfd8a47b30a7671c992f39d679f6233e01d3f2e04c6e466de983409", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ddfe0cd6cfd8a47b30a7671c992f39d679f6233e01d3f2e04c6e466de983409"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cglib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97701, "scanner": "repobility-docker", "fingerprint": "a46b1e836457ad26bc7e511ff0954e758aac6e531deb1d61a5092d73b12b1de3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a46b1e836457ad26bc7e511ff0954e758aac6e531deb1d61a5092d73b12b1de3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cglib/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97700, "scanner": "repobility-docker", "fingerprint": "c12c067dbfdcecdae0b7af29eaecbd91356db931caa7311f7cf7abb573634145", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c12c067dbfdcecdae0b7af29eaecbd91356db931caa7311f7cf7abb573634145"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cgif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97697, "scanner": "repobility-docker", "fingerprint": "b940d98e8cc83f31c9105afdcf36baf3af7015f0cc77cc0207a200b5bfb6cb5a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b940d98e8cc83f31c9105afdcf36baf3af7015f0cc77cc0207a200b5bfb6cb5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cgif/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97696, "scanner": "repobility-docker", "fingerprint": "a670abba66b5ceef02a86b50163833ee79caefe5401240c0b2aa254a91e277b5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a670abba66b5ceef02a86b50163833ee79caefe5401240c0b2aa254a91e277b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cffi/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97694, "scanner": "repobility-docker", "fingerprint": "cf859f6556398fcfff4abe13c009790c2d857e8bd8384433c9fbebfff09ef440", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf859f6556398fcfff4abe13c009790c2d857e8bd8384433c9fbebfff09ef440"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cffi/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97693, "scanner": "repobility-docker", "fingerprint": "754ac17da0c68c8906d4a0b0912fa772987b8c83589149f64e8841551fd9bf06", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|754ac17da0c68c8906d4a0b0912fa772987b8c83589149f64e8841551fd9bf06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cfengine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97690, "scanner": "repobility-docker", "fingerprint": "df0c35021f30104f950d601fd814bfc23b209149e348775db45ee55743b8a498", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df0c35021f30104f950d601fd814bfc23b209149e348775db45ee55743b8a498"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cfengine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97689, "scanner": "repobility-docker", "fingerprint": "0ad4569af4231ea51fb25499d93ebc46bccd531883ae9454aa11f5ffb2241671", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ad4569af4231ea51fb25499d93ebc46bccd531883ae9454aa11f5ffb2241671"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cert-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97688, "scanner": "repobility-docker", "fingerprint": "94474907dd4bb4f56766ca2e4225be94cdf4aa245ae99b6f83a5189877b14235", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|94474907dd4bb4f56766ca2e4225be94cdf4aa245ae99b6f83a5189877b14235"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cert-manager/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97687, "scanner": "repobility-docker", "fingerprint": "59d92318a260ccb435f7ef22145789c9daf76f6f4171203f0ef6e3e00a77825b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|59d92318a260ccb435f7ef22145789c9daf76f6f4171203f0ef6e3e00a77825b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97684, "scanner": "repobility-docker", "fingerprint": "494769bd1c1fb1fdc12658f006af2851f1efa6fbab45d9eef279c9cb167193e4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|494769bd1c1fb1fdc12658f006af2851f1efa6fbab45d9eef279c9cb167193e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97683, "scanner": "repobility-docker", "fingerprint": "ab6798027f29d281db00413c5cc762c66cfc7f11a6fadee2852b62ff3b19dba9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab6798027f29d281db00413c5cc762c66cfc7f11a6fadee2852b62ff3b19dba9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97680, "scanner": "repobility-docker", "fingerprint": "05b8a8c1767de812e1f111956b896c096f81de2b08b8613d39aa3a8f5d7030c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|05b8a8c1767de812e1f111956b896c096f81de2b08b8613d39aa3a8f5d7030c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97679, "scanner": "repobility-docker", "fingerprint": "a6b3cd032d9343aee4384bdd2c4533755511543a22930ee121f3ef03cdb2ee4a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6b3cd032d9343aee4384bdd2c4533755511543a22930ee121f3ef03cdb2ee4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cctz/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97676, "scanner": "repobility-docker", "fingerprint": "19c81f4699559ab367e58473d3cef9b43ab51b7a510efb7433db624b5dd5092d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19c81f4699559ab367e58473d3cef9b43ab51b7a510efb7433db624b5dd5092d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cbor2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97675, "scanner": "repobility-docker", "fingerprint": "7646a2b2ddcd99a1f0b6fe4428d8da6024c3dd8dece9bde4f062d50e8d6cb3b0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7646a2b2ddcd99a1f0b6fe4428d8da6024c3dd8dece9bde4f062d50e8d6cb3b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cbor2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97674, "scanner": "repobility-docker", "fingerprint": "a2b453a004bfae4f0d83b8166a9ce681dd723e8d1b836acb5120d5edf12d53c7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2b453a004bfae4f0d83b8166a9ce681dd723e8d1b836acb5120d5edf12d53c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cbor-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97671, "scanner": "repobility-docker", "fingerprint": "b714a1dea8879123059a9877b86cdac431cb7d800f446acca858a3a628663a03", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b714a1dea8879123059a9877b86cdac431cb7d800f446acca858a3a628663a03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/casync/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97668, "scanner": "repobility-docker", "fingerprint": "5b445c298213fe6f9062ba8f4a9fc010f963df9b67f2f105415da03daa6a7d87", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5b445c298213fe6f9062ba8f4a9fc010f963df9b67f2f105415da03daa6a7d87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/casync/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97667, "scanner": "repobility-docker", "fingerprint": "3b5665f5fda83f4b46c7981ec5ae077834efcadaf030e5b9039e434cbbf1078d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b5665f5fda83f4b46c7981ec5ae077834efcadaf030e5b9039e434cbbf1078d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cascadia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97666, "scanner": "repobility-docker", "fingerprint": "b52449d7c44657eae0d5804e5a36431d888867c610ad94cedf075818802ce6cf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b52449d7c44657eae0d5804e5a36431d888867c610ad94cedf075818802ce6cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cascadia/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97665, "scanner": "repobility-docker", "fingerprint": "9c5893056cfbe992337f274aa0b239c01b00bd19d3f5fd481f6a0cb0c114a271", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c5893056cfbe992337f274aa0b239c01b00bd19d3f5fd481f6a0cb0c114a271"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capstone/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97662, "scanner": "repobility-docker", "fingerprint": "fc0fa7db276cc05801ed380cb1f164f67994788de8fa59bff403583ef2eaafaa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc0fa7db276cc05801ed380cb1f164f67994788de8fa59bff403583ef2eaafaa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capstone/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97661, "scanner": "repobility-docker", "fingerprint": "0ecec4aeac79bed799fb257c98f3c7c0f76992d670e42185db4c16d187a5887d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0ecec4aeac79bed799fb257c98f3c7c0f76992d670e42185db4c16d187a5887d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capnproto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97658, "scanner": "repobility-docker", "fingerprint": "1fff1e557dc3eec50d610a0bc2167c946dd63b2488a0158e43e3bfb9dde7f3ce", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1fff1e557dc3eec50d610a0bc2167c946dd63b2488a0158e43e3bfb9dde7f3ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capnproto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97657, "scanner": "repobility-docker", "fingerprint": "728c39ab1e5b25282853e51d3b452ee0963ec039bc87d49a19707508741e4865", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|728c39ab1e5b25282853e51d3b452ee0963ec039bc87d49a19707508741e4865"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/canvg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97656, "scanner": "repobility-docker", "fingerprint": "d76ab0a810cb118339da1944f493867c7798b2772fc5391ffae2776f30de5341", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d76ab0a810cb118339da1944f493867c7798b2772fc5391ffae2776f30de5341"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/canvg/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97655, "scanner": "repobility-docker", "fingerprint": "46c39712c9db9558fe31f603a69a39bee5069c39d51d3d41e64914417cda67e5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|46c39712c9db9558fe31f603a69a39bee5069c39d51d3d41e64914417cda67e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/calcite-avatica/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97654, "scanner": "repobility-docker", "fingerprint": "060b14095448f4a00a7a878b63aa61b2e38b403fdb7406b0593f5ca793135f93", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|060b14095448f4a00a7a878b63aa61b2e38b403fdb7406b0593f5ca793135f93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/calcite-avatica/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97653, "scanner": "repobility-docker", "fingerprint": "f29c14ac990e197d718d985f5418ade01f90d93fab72ddd06992483a39ddd456", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f29c14ac990e197d718d985f5418ade01f90d93fab72ddd06992483a39ddd456"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/calcite/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97652, "scanner": "repobility-docker", "fingerprint": "1b8baa96b50ec146d87edf969ec924205a83e7c78be4e6a871f2742e44650339", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b8baa96b50ec146d87edf969ec924205a83e7c78be4e6a871f2742e44650339"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97651, "scanner": "repobility-docker", "fingerprint": "1440e97ddf91fb030794f31316008355665d6ef1f7ea9854a2f0c1f18f9757f5", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1440e97ddf91fb030794f31316008355665d6ef1f7ea9854a2f0c1f18f9757f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97650, "scanner": "repobility-docker", "fingerprint": "fbeec4b503cd1213b1550b6104ece00a269b5afe599d32a5d92f57ad0596d6b9", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbeec4b503cd1213b1550b6104ece00a269b5afe599d32a5d92f57ad0596d6b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97647, "scanner": "repobility-docker", "fingerprint": "013883800aac7f8e84137f8eed27d0798dc3a200cafd762e74afdf8999483dd0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|013883800aac7f8e84137f8eed27d0798dc3a200cafd762e74afdf8999483dd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97646, "scanner": "repobility-docker", "fingerprint": "0d070eb8b7c6e0eb7b06a08e1d4b94043cf368cc465c2878a82010184cafbf51", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0d070eb8b7c6e0eb7b06a08e1d4b94043cf368cc465c2878a82010184cafbf51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caffeine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97643, "scanner": "repobility-docker", "fingerprint": "38ca9d6e18a5c9a4db3365c1516658e49c100ad5278be495f613ce57ebe4d893", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38ca9d6e18a5c9a4db3365c1516658e49c100ad5278be495f613ce57ebe4d893"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caffeine/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97642, "scanner": "repobility-docker", "fingerprint": "8175394cfcf01aa6b4318fa59c0f82c086ff3289f079ea69f8d77d16529fad00", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8175394cfcf01aa6b4318fa59c0f82c086ff3289f079ea69f8d77d16529fad00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caddy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97641, "scanner": "repobility-docker", "fingerprint": "6330fc98347490b04db62fe6643525ca193094b8553af3c91517b08972d3b644", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6330fc98347490b04db62fe6643525ca193094b8553af3c91517b08972d3b644"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caddy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97640, "scanner": "repobility-docker", "fingerprint": "9fc61b7f0d4dbf29ab7ea2704a92bd196149bdfeab902a0decc601d257502657", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9fc61b7f0d4dbf29ab7ea2704a92bd196149bdfeab902a0decc601d257502657"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cachetools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97639, "scanner": "repobility-docker", "fingerprint": "970a3a8575706d47601726543d5dfd8ca0fbfe63bc9e3a4bc8a505d83672d3d4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|970a3a8575706d47601726543d5dfd8ca0fbfe63bc9e3a4bc8a505d83672d3d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cachetools/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97638, "scanner": "repobility-docker", "fingerprint": "0151db0845999185b616f9602b05b1bbb6228ddb842ca8eed719e3b1150807b8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0151db0845999185b616f9602b05b1bbb6228ddb842ca8eed719e3b1150807b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97635, "scanner": "repobility-docker", "fingerprint": "7d1059e14397c31a8d332e36a94c6729b4c2ed5d58c7c751226cb9a88d1ea8b6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d1059e14397c31a8d332e36a94c6729b4c2ed5d58c7c751226cb9a88d1ea8b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97632, "scanner": "repobility-docker", "fingerprint": "8d0ee13ec56e958e3b88eb843a259338324c53e146169046a00dfba6adcf5954", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d0ee13ec56e958e3b88eb843a259338324c53e146169046a00dfba6adcf5954"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97631, "scanner": "repobility-docker", "fingerprint": "287913e5f90195b0f3dc16ce229c2e5069073271e5a23a61d5f74ed313bf7390", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|287913e5f90195b0f3dc16ce229c2e5069073271e5a23a61d5f74ed313bf7390"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-ares/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97628, "scanner": "repobility-docker", "fingerprint": "5dae1c66f336ca30dc9c0027fcb99285cea1efab7077a4341bc7c25eac0f3b7a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5dae1c66f336ca30dc9c0027fcb99285cea1efab7077a4341bc7c25eac0f3b7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-ares/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97627, "scanner": "repobility-docker", "fingerprint": "c8f92d284de7444652666d33920723ff14247d5e8ae596862949b13bcdfe6dbd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8f92d284de7444652666d33920723ff14247d5e8ae596862949b13bcdfe6dbd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bzip2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97626, "scanner": "repobility-docker", "fingerprint": "02770b6bcdd304f104d3aefae58480340e5e45bc163994c22ecc345e034582a6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02770b6bcdd304f104d3aefae58480340e5e45bc163994c22ecc345e034582a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bzip2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97625, "scanner": "repobility-docker", "fingerprint": "16ecdcf936ff03cb5f8f553fc641e438392b802c1764b31bec7f5631c23b7cb1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16ecdcf936ff03cb5f8f553fc641e438392b802c1764b31bec7f5631c23b7cb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bz2file/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97624, "scanner": "repobility-docker", "fingerprint": "555580691a7e2c3d095299309da04d840e42d66383a60d8da07b3aa0630700ed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|555580691a7e2c3d095299309da04d840e42d66383a60d8da07b3aa0630700ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bz2file/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97623, "scanner": "repobility-docker", "fingerprint": "d46ba6f7986a6ce3fedd757bd03c53495bf3e8371e4d8a0709e178d0b5a5b2f2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d46ba6f7986a6ce3fedd757bd03c53495bf3e8371e4d8a0709e178d0b5a5b2f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/burntsushi-toml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97620, "scanner": "repobility-docker", "fingerprint": "8cd68af29802d040b9733b6c0ea1741509221bc90d6f144a8534e26b57614ae3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cd68af29802d040b9733b6c0ea1741509221bc90d6f144a8534e26b57614ae3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/burntsushi-toml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97619, "scanner": "repobility-docker", "fingerprint": "45d6fdf36e725a681abfef636010ef0e2a51be03053f786a263a00370c952685", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45d6fdf36e725a681abfef636010ef0e2a51be03053f786a263a00370c952685"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bson-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97616, "scanner": "repobility-docker", "fingerprint": "8482d668b72306e87e5a4bb7d84df27a401aa1b0bfe6397e60865d4dceaa0089", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8482d668b72306e87e5a4bb7d84df27a401aa1b0bfe6397e60865d4dceaa0089"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bson-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97615, "scanner": "repobility-docker", "fingerprint": "112596edab22b5445ec3b2fbf9cbabd9046953d0a8ddc6eda96849c01d668e64", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|112596edab22b5445ec3b2fbf9cbabd9046953d0a8ddc6eda96849c01d668e64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97609, "scanner": "repobility-docker", "fingerprint": "2ba754923f56d9b2fda77e0bf5491613ae911a5a6609cf642397176197d90b2d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ba754923f56d9b2fda77e0bf5491613ae911a5a6609cf642397176197d90b2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brunsli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97606, "scanner": "repobility-docker", "fingerprint": "c402df5186553421b65c16d5f38053d4587c3a8602e9890a26f9febb890eb03e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c402df5186553421b65c16d5f38053d4587c3a8602e9890a26f9febb890eb03e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brpc/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97603, "scanner": "repobility-docker", "fingerprint": "9c7c80c0d11096254106fe18989058dc077ce3cf442f40d5a7fbe1e1333c82c2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c7c80c0d11096254106fe18989058dc077ce3cf442f40d5a7fbe1e1333c82c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97600, "scanner": "repobility-docker", "fingerprint": "4152c30f78501e9dcbf28bbea3720abb6295120f87f0e0b05237ad1d59a833f2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4152c30f78501e9dcbf28bbea3720abb6295120f87f0e0b05237ad1d59a833f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97599, "scanner": "repobility-docker", "fingerprint": "fb3fd34b1ba5291d05900605178e573fced549ae39d0573c0c26ba23bbb2ff93", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb3fd34b1ba5291d05900605178e573fced549ae39d0573c0c26ba23bbb2ff93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97596, "scanner": "repobility-docker", "fingerprint": "e660f450d0726a66f4799cbdd8a2855f60418f3d9879b594f0a0cd62ee916778", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e660f450d0726a66f4799cbdd8a2855f60418f3d9879b594f0a0cd62ee916778"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97595, "scanner": "repobility-docker", "fingerprint": "d7632b7cc81991d40c712db4dc5e7af44f0f04e53af3969b53e19151c0c5a16d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7632b7cc81991d40c712db4dc5e7af44f0f04e53af3969b53e19151c0c5a16d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bottleneck/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97592, "scanner": "repobility-docker", "fingerprint": "448e90b9f54198ee620eda68c3981d5a4976e56eded26d7665117bbbaff60a8a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|448e90b9f54198ee620eda68c3981d5a4976e56eded26d7665117bbbaff60a8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bottleneck/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97591, "scanner": "repobility-docker", "fingerprint": "d3e6a5d57ef7d3d02cc7d7479c2d1e9b9a36b24d4bb02671addd361b90ff7910", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3e6a5d57ef7d3d02cc7d7479c2d1e9b9a36b24d4bb02671addd361b90ff7910"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botocore/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97590, "scanner": "repobility-docker", "fingerprint": "31ebbfd1705fc3a2c381e8f64130b725df72f3ae74f33719e148731c26e3aa9d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31ebbfd1705fc3a2c381e8f64130b725df72f3ae74f33719e148731c26e3aa9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botocore/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97589, "scanner": "repobility-docker", "fingerprint": "1c69d5f411c7e425d8de2d05d8a95d8164df18959908f7078c5d5e49afc598db", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1c69d5f411c7e425d8de2d05d8a95d8164df18959908f7078c5d5e49afc598db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botan/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97586, "scanner": "repobility-docker", "fingerprint": "1ba563baa9a05f6429c7859574b7efefe2065acc0e6c315623a8cad7fa3d2e29", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1ba563baa9a05f6429c7859574b7efefe2065acc0e6c315623a8cad7fa3d2e29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botan/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97585, "scanner": "repobility-docker", "fingerprint": "e8017276e114cd18005bf4b4487addd742c77a0641557f064b1a9c2e68551c20", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8017276e114cd18005bf4b4487addd742c77a0641557f064b1a9c2e68551c20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boringssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97582, "scanner": "repobility-docker", "fingerprint": "c366309910ceae4e7e3deffd5c2da026122263ee38975f3a28242a4366cdee98", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c366309910ceae4e7e3deffd5c2da026122263ee38975f3a28242a4366cdee98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boringssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97581, "scanner": "repobility-docker", "fingerprint": "0a5e06fa1bcc68d2815da79cca5c4eee771845379527a3177329fa627b21993d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a5e06fa1bcc68d2815da79cca5c4eee771845379527a3177329fa627b21993d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost-json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97580, "scanner": "repobility-docker", "fingerprint": "7e3c625ee5d31c02fe8441853d80e51ee7b9e503cb95c2d113d3fe1bd1daa30f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e3c625ee5d31c02fe8441853d80e51ee7b9e503cb95c2d113d3fe1bd1daa30f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost-json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97579, "scanner": "repobility-docker", "fingerprint": "8ebff4be627fde19b0328416cb8ada15c3465e605242ac5e34ebf088cc1e7e83", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:v1", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ebff4be627fde19b0328416cb8ada15c3465e605242ac5e34ebf088cc1e7e83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost-beast/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97578, "scanner": "repobility-docker", "fingerprint": "22b837d9af0d89c4260acd95a024bf7f780ffda4938144a6342ae04b7e0863db", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22b837d9af0d89c4260acd95a024bf7f780ffda4938144a6342ae04b7e0863db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97575, "scanner": "repobility-docker", "fingerprint": "7dcf19f529b5d0c843ad14c48cbb697ce90fcf58dece58da63e21315274b55f9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7dcf19f529b5d0c843ad14c48cbb697ce90fcf58dece58da63e21315274b55f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97574, "scanner": "repobility-docker", "fingerprint": "3b66ac45a04bcea7c37ff32dd3aa834347866e4aa07c63ccc39b570b53578b56", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b66ac45a04bcea7c37ff32dd3aa834347866e4aa07c63ccc39b570b53578b56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97571, "scanner": "repobility-docker", "fingerprint": "98a375f4259736adea4680ee62f1951780f247030cf3a34c5de28a25ee5cdf71", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98a375f4259736adea4680ee62f1951780f247030cf3a34c5de28a25ee5cdf71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97570, "scanner": "repobility-docker", "fingerprint": "6d0740ee04c717f266060b5695363eebfdba256bef25f6f7ddf1c717d5942f45", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d0740ee04c717f266060b5695363eebfdba256bef25f6f7ddf1c717d5942f45"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97565, "scanner": "repobility-docker", "fingerprint": "570cb06c86df80a78fef5de3d47a0c09f38cf38ff5eda7b739dd2b1051d3ce37", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|570cb06c86df80a78fef5de3d47a0c09f38cf38ff5eda7b739dd2b1051d3ce37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97564, "scanner": "repobility-docker", "fingerprint": "5ce7fe2d008361858e31293a79ccd5b96e87f090fe23db49a8e2c3b5ce744da0", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ce7fe2d008361858e31293a79ccd5b96e87f090fe23db49a8e2c3b5ce744da0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bls-signatures/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97561, "scanner": "repobility-docker", "fingerprint": "9a0f2070511bf9814bdc350dd0ad4e0482ef3fd875df1dba7f4419f308442116", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9a0f2070511bf9814bdc350dd0ad4e0482ef3fd875df1dba7f4419f308442116"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bls-signatures/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97560, "scanner": "repobility-docker", "fingerprint": "06873e023e0d4b2a7aef094153d808e8267494456a9401967bca9efcd5950d72", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|06873e023e0d4b2a7aef094153d808e8267494456a9401967bca9efcd5950d72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bloaty/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97557, "scanner": "repobility-docker", "fingerprint": "ac9bf31e34a25365c4d8e63650edbb417787f847c88ba5b2abd7a0be593e107d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac9bf31e34a25365c4d8e63650edbb417787f847c88ba5b2abd7a0be593e107d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bloaty/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97556, "scanner": "repobility-docker", "fingerprint": "124364c3de4697dccb7b2b71cd58b2c24c96a94000ca865c49818036192c9937", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|124364c3de4697dccb7b2b71cd58b2c24c96a94000ca865c49818036192c9937"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bleach/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97555, "scanner": "repobility-docker", "fingerprint": "8d5a093413eb22f31d070f62e85434ec69f07d9191a88d4c70726e9ac8f5b3f9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d5a093413eb22f31d070f62e85434ec69f07d9191a88d4c70726e9ac8f5b3f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bleach/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97554, "scanner": "repobility-docker", "fingerprint": "9d1fd54fbcc12c0be39a74a11fe85c2e573c2979b022dca17a4d581fafda9e35", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d1fd54fbcc12c0be39a74a11fe85c2e573c2979b022dca17a4d581fafda9e35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/blackfriday/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97553, "scanner": "repobility-docker", "fingerprint": "bd8ef0e0db46a21866ddc8833205517ec043c3017b5d546212af881e6e170d70", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd8ef0e0db46a21866ddc8833205517ec043c3017b5d546212af881e6e170d70"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/blackfriday/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97552, "scanner": "repobility-docker", "fingerprint": "99e8631f725b5f5188d5e2526b78a3b5adb46c462b018ae8ca1814ba2335c96f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99e8631f725b5f5188d5e2526b78a3b5adb46c462b018ae8ca1814ba2335c96f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/black/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97551, "scanner": "repobility-docker", "fingerprint": "620f3433523ac1d09c2742117ada46699202bf8b39800f9fea78378ca5de6d77", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|620f3433523ac1d09c2742117ada46699202bf8b39800f9fea78378ca5de6d77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/black/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97550, "scanner": "repobility-docker", "fingerprint": "e46ea0a0e8ef98344fec5f24a277d0874cb64bea2a26cfc43fc11bde2421dd52", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e46ea0a0e8ef98344fec5f24a277d0874cb64bea2a26cfc43fc11bde2421dd52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bitcoin-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97547, "scanner": "repobility-docker", "fingerprint": "e73ae2246d12b3995b9b3131d213c4bb731cb10a9abe7114d9299c77a936d3e4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e73ae2246d12b3995b9b3131d213c4bb731cb10a9abe7114d9299c77a936d3e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bitcoin-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97546, "scanner": "repobility-docker", "fingerprint": "7adc15fe1507130ddde258d05169623fc32b2f5a35f29003e913c87ecce00e1d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7adc15fe1507130ddde258d05169623fc32b2f5a35f29003e913c87ecce00e1d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bios-bmc-smm-error-logger/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97543, "scanner": "repobility-docker", "fingerprint": "0136b846adae90bfe09a9467e57c1c1e6e755b0eb975416c4b5872a886259cbd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0136b846adae90bfe09a9467e57c1c1e6e755b0eb975416c4b5872a886259cbd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97539, "scanner": "repobility-docker", "fingerprint": "1002f7f8210823aaf675afd3274c84315aa07413a496fbe04db111119afff4b3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1002f7f8210823aaf675afd3274c84315aa07413a496fbe04db111119afff4b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97538, "scanner": "repobility-docker", "fingerprint": "635d68d1445c363bd162177cf5dd3d525a4760e3a54e87dce3cad9f06c1d2c1e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|635d68d1445c363bd162177cf5dd3d525a4760e3a54e87dce3cad9f06c1d2c1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bind9/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97536, "scanner": "repobility-docker", "fingerprint": "c846942f2929c210ace1e92b4f7db9c5ba46fb178b8038acdd17eff33a8092be", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c846942f2929c210ace1e92b4f7db9c5ba46fb178b8038acdd17eff33a8092be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bincode/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 97535, "scanner": "repobility-docker", "fingerprint": "4992b0c3212bfb1baaac4af940b56a034ca38448258c312e7d58ce5e28f0ffc3", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4992b0c3212bfb1baaac4af940b56a034ca38448258c312e7d58ce5e28f0ffc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bincode/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97534, "scanner": "repobility-docker", "fingerprint": "1d1361d9ad45308a8412adf43319865044c68014917ecbae8cc1423d677a70b0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d1361d9ad45308a8412adf43319865044c68014917ecbae8cc1423d677a70b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bincode/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97533, "scanner": "repobility-docker", "fingerprint": "f19829879f00dc85765ed79951175a0d3fdf91450730c3995afe11573475c180", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f19829879f00dc85765ed79951175a0d3fdf91450730c3995afe11573475c180"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97528, "scanner": "repobility-docker", "fingerprint": "7520fde53c6bb50399eff6e5acb10ea6ea7427b35dd615a456421e1254c922aa", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7520fde53c6bb50399eff6e5acb10ea6ea7427b35dd615a456421e1254c922aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/behaviortreecpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97525, "scanner": "repobility-docker", "fingerprint": "803f248f3bdafe867c0aab863931020587c1522a4de726ce1f92062d165844a4", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|803f248f3bdafe867c0aab863931020587c1522a4de726ce1f92062d165844a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/behaviortreecpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97524, "scanner": "repobility-docker", "fingerprint": "3fba951c7bc1c4bd4c2e36bb89a7f0b90fd3e049b22eae09d60fe2acd8296c1b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fba951c7bc1c4bd4c2e36bb89a7f0b90fd3e049b22eae09d60fe2acd8296c1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bearssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97521, "scanner": "repobility-docker", "fingerprint": "17806e5bc4efa4f80c7030db71b3c91751082268f94ca0387844688416803a12", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17806e5bc4efa4f80c7030db71b3c91751082268f94ca0387844688416803a12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bearssl/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97520, "scanner": "repobility-docker", "fingerprint": "3a8926087d2857a757a89c56a784304246802bb291b21a4d877faa4af50d30a6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a8926087d2857a757a89c56a784304246802bb291b21a4d877faa4af50d30a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bc-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97519, "scanner": "repobility-docker", "fingerprint": "54f1151fbf5a7659631d7bd2144e86c5ed4bc151dc4599f3b9fb83301ed3a4b6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54f1151fbf5a7659631d7bd2144e86c5ed4bc151dc4599f3b9fb83301ed3a4b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bc-gh/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97516, "scanner": "repobility-docker", "fingerprint": "4288bdd375655209dc9b75eaa36f79b482857945e3819591dc58fef1436846d6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4288bdd375655209dc9b75eaa36f79b482857945e3819591dc58fef1436846d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97513, "scanner": "repobility-docker", "fingerprint": "bbfc464085eb2a7ac1a50f3dccf5b295ebd6ff75ffeaca084f5d090aa81a4e1d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bbfc464085eb2a7ac1a50f3dccf5b295ebd6ff75ffeaca084f5d090aa81a4e1d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97512, "scanner": "repobility-docker", "fingerprint": "20fd94ee30195bd9241b939bb4ce8e1632047362f4135f24d9e1abffefa24569", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|20fd94ee30195bd9241b939bb4ce8e1632047362f4135f24d9e1abffefa24569"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97509, "scanner": "repobility-docker", "fingerprint": "f5bfe4b8cc1516d0a0d878c85c1bfde9234364468b76c99ad956dd85bd8f811a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f5bfe4b8cc1516d0a0d878c85c1bfde9234364468b76c99ad956dd85bd8f811a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97508, "scanner": "repobility-docker", "fingerprint": "e3310db3678b85e3a5c0080a06a2e79d05562fb674870e5fb10342651ec9688a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e3310db3678b85e3a5c0080a06a2e79d05562fb674870e5fb10342651ec9688a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bad_example/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97505, "scanner": "repobility-docker", "fingerprint": "12537bb26322075a5868a769423dc87a8c097e7b309245bd699192dd9bb8650b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12537bb26322075a5868a769423dc87a8c097e7b309245bd699192dd9bb8650b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/babel/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97504, "scanner": "repobility-docker", "fingerprint": "308821b8ede5228fb1c0ab7dd0c1913ef68a10fce1f4af117c4f5547cca1b7b0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|308821b8ede5228fb1c0ab7dd0c1913ef68a10fce1f4af117c4f5547cca1b7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/babel/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97503, "scanner": "repobility-docker", "fingerprint": "907e27a4480c1ca0600c61065e7407ec4d07e36a6f7a848d3cf89f1ce7768937", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|907e27a4480c1ca0600c61065e7407ec4d07e36a6f7a848d3cf89f1ce7768937"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/azure-sdk-for-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97502, "scanner": "repobility-docker", "fingerprint": "a9b4199fe1e1b7b1a4fcd21f208652fdf4ffd31e7de33c45d5439da3c0737ce6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a9b4199fe1e1b7b1a4fcd21f208652fdf4ffd31e7de33c45d5439da3c0737ce6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/azure-sdk-for-python/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97501, "scanner": "repobility-docker", "fingerprint": "4b6c8ce7c52663a721d74f18b5f63873c1ea0e2cde7be1e1f40c87827b6ef1a8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b6c8ce7c52663a721d74f18b5f63873c1ea0e2cde7be1e1f40c87827b6ef1a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/avro/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97500, "scanner": "repobility-docker", "fingerprint": "1b5e6317e77a86c1165fca8dd26664e3a39ff4388d34afd83b692517f935d6e8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b5e6317e77a86c1165fca8dd26664e3a39ff4388d34afd83b692517f935d6e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/avro/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97499, "scanner": "repobility-docker", "fingerprint": "5205a82aff62a44ce42fd97ce5fac5ba598b3b8b4896aa92124f78d76125f25b", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5205a82aff62a44ce42fd97ce5fac5ba598b3b8b4896aa92124f78d76125f25b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/avahi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97498, "scanner": "repobility-docker", "fingerprint": "23c6b3b93707ee7319548692bb0f24d52cd492e73816149393c6942dea51c7e9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|23c6b3b93707ee7319548692bb0f24d52cd492e73816149393c6942dea51c7e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/autopep8/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97497, "scanner": "repobility-docker", "fingerprint": "2c08fb8eb677896a7e992369643869c14c22e1e429fa3473183fa200e3f1be90", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c08fb8eb677896a7e992369643869c14c22e1e429fa3473183fa200e3f1be90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/autopep8/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97496, "scanner": "repobility-docker", "fingerprint": "c4fc87144e630c22459cfcef1d4db7974ac7ea58e7433d8bb2b1fd7a54dbbacb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c4fc87144e630c22459cfcef1d4db7974ac7ea58e7433d8bb2b1fd7a54dbbacb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/autoflake/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97495, "scanner": "repobility-docker", "fingerprint": "90707144bca5f1916f8c5d19ec81f605d5e7beaf3e13688785cb5b6ea897a6e0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90707144bca5f1916f8c5d19ec81f605d5e7beaf3e13688785cb5b6ea897a6e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/autoflake/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97494, "scanner": "repobility-docker", "fingerprint": "46046956c2822c4143ce68a0a8b74f168521aa597a4f3f38894bad2a58ca91f2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|46046956c2822c4143ce68a0a8b74f168521aa597a4f3f38894bad2a58ca91f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/augeas/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97491, "scanner": "repobility-docker", "fingerprint": "b46116ae9f9103482efbadcdf17a2857525360de667e10ec7e8dffc406579dd4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b46116ae9f9103482efbadcdf17a2857525360de667e10ec7e8dffc406579dd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/attrs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97490, "scanner": "repobility-docker", "fingerprint": "a2df9323f0ea8eda5761f91b15924330d14a7b41507eb2ee1ee7a9a04be5d903", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2df9323f0ea8eda5761f91b15924330d14a7b41507eb2ee1ee7a9a04be5d903"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/attrs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97489, "scanner": "repobility-docker", "fingerprint": "a50ab7516163b8d12145d9353079a846deb3ca45e4d66dbb509dd5295a92b47e", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a50ab7516163b8d12145d9353079a846deb3ca45e4d66dbb509dd5295a92b47e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/atomic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97488, "scanner": "repobility-docker", "fingerprint": "54c01019b5052780c6da00b341d249e05f00f6e341ef7344723c8ca60328be31", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-go", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54c01019b5052780c6da00b341d249e05f00f6e341ef7344723c8ca60328be31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/atomic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97487, "scanner": "repobility-docker", "fingerprint": "5e8355698ebe334ce639bd92ebff9472a439d110059fbe4cbb71d83448788bd9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e8355698ebe334ce639bd92ebff9472a439d110059fbe4cbb71d83448788bd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/async-http-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97484, "scanner": "repobility-docker", "fingerprint": "7d8ca84d7d06b6e2f459fd74c7a5d74d2b22b979f8a43b31e3f84e70067e43b8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d8ca84d7d06b6e2f459fd74c7a5d74d2b22b979f8a43b31e3f84e70067e43b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/async-http-client/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97483, "scanner": "repobility-docker", "fingerprint": "b69d690c2f4b71214a57fffa398c1ea70a18fdbf025ef2d0eb41950f40dca628", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b69d690c2f4b71214a57fffa398c1ea70a18fdbf025ef2d0eb41950f40dca628"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asttokens/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97482, "scanner": "repobility-docker", "fingerprint": "1f66ea468d73e31e6a9c5805b19ffde102fbd31cc8fc23b0796cdee339e5b047", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1f66ea468d73e31e6a9c5805b19ffde102fbd31cc8fc23b0796cdee339e5b047"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asttokens/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97481, "scanner": "repobility-docker", "fingerprint": "62da4396dc0f90a4b626499d9292fae45a2e93faa18b0316ae233ba9499cb2c9", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62da4396dc0f90a4b626499d9292fae45a2e93faa18b0316ae233ba9499cb2c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astroid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97480, "scanner": "repobility-docker", "fingerprint": "547d16752021845f5e236d418468e49c6a56686f7eca3e82417ed24499669a52", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|547d16752021845f5e236d418468e49c6a56686f7eca3e82417ed24499669a52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astroid/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97479, "scanner": "repobility-docker", "fingerprint": "17b9f819819fb6e9816f2e72016e006780eeafdfc3b7bfeb3c7756b435be6418", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|17b9f819819fb6e9816f2e72016e006780eeafdfc3b7bfeb3c7756b435be6418"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astro-compiler/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97478, "scanner": "repobility-docker", "fingerprint": "b76cb40b9e1bf50cc0987df7449257e9097017dcc24b4da5f2ff8575c3bd7924", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b76cb40b9e1bf50cc0987df7449257e9097017dcc24b4da5f2ff8575c3bd7924"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asteval/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97477, "scanner": "repobility-docker", "fingerprint": "0a4c9551f99dfb73ad29562f3a879d476c270b49347d854ebb3ea7fcecf05fed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a4c9551f99dfb73ad29562f3a879d476c270b49347d854ebb3ea7fcecf05fed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asteval/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97476, "scanner": "repobility-docker", "fingerprint": "b0170ddd729fea513a338c48ca833c43dc829e6fc0756eff3730504797e6f31d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0170ddd729fea513a338c48ca833c43dc829e6fc0756eff3730504797e6f31d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astc-encoder/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97473, "scanner": "repobility-docker", "fingerprint": "170f484075d3aa243e42df9c2a1035112d3bb7b860f85c2fb1b08b05c903dae1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|170f484075d3aa243e42df9c2a1035112d3bb7b860f85c2fb1b08b05c903dae1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astc-encoder/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97472, "scanner": "repobility-docker", "fingerprint": "6b40f26c6dc103a790743f2a0bf81b7a5098f809233edfb9f2ff056d35aa6c1d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b40f26c6dc103a790743f2a0bf81b7a5098f809233edfb9f2ff056d35aa6c1d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/assimp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97469, "scanner": "repobility-docker", "fingerprint": "94b3ca75b5f9316c9960da85fa4cfbc57ae0533c4c7afd762a8c303e63c39559", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|94b3ca75b5f9316c9960da85fa4cfbc57ae0533c4c7afd762a8c303e63c39559"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/assimp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97468, "scanner": "repobility-docker", "fingerprint": "187173061d9340b112466dabf30a2e8a139adf9ba56882f7eac08307974129be", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|187173061d9340b112466dabf30a2e8a139adf9ba56882f7eac08307974129be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aspell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97467, "scanner": "repobility-docker", "fingerprint": "52f9995bbf453d286264d3ecd19e7f42c5a4e2e20e01bfd6942baba9eebe7029", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52f9995bbf453d286264d3ecd19e7f42c5a4e2e20e01bfd6942baba9eebe7029"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aspell/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97466, "scanner": "repobility-docker", "fingerprint": "526d07990dbbf9fd2c8527b9a9c0bea95ce081315ec2e6db46c8539530947d16", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|526d07990dbbf9fd2c8527b9a9c0bea95ce081315ec2e6db46c8539530947d16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aspectj/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97465, "scanner": "repobility-docker", "fingerprint": "3e30943fc68400dad173ef2fdc07b24d1f1c8e529d206a092666fb7755114421", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e30943fc68400dad173ef2fdc07b24d1f1c8e529d206a092666fb7755114421"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asn1crypto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97462, "scanner": "repobility-docker", "fingerprint": "84b11219c4c751a1497af971721e8729d89fc8a4f34614012d7d02b247457573", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84b11219c4c751a1497af971721e8729d89fc8a4f34614012d7d02b247457573"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asn1crypto/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97461, "scanner": "repobility-docker", "fingerprint": "123dd87ea95ecc65313f4d0281f9a0ea5cc6001e537ddd64ec33cc574c38d85c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|123dd87ea95ecc65313f4d0281f9a0ea5cc6001e537ddd64ec33cc574c38d85c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/askama/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97458, "scanner": "repobility-docker", "fingerprint": "7478a5eea1f1d495cf8bcb21a060f403ea9e3c231a372e21ddeed4a597d46529", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7478a5eea1f1d495cf8bcb21a060f403ea9e3c231a372e21ddeed4a597d46529"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/askama/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97457, "scanner": "repobility-docker", "fingerprint": "2b8d12c31af2961887e989631bc509b0cbd5511eb2badd9443efaf085d374acf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b8d12c31af2961887e989631bc509b0cbd5511eb2badd9443efaf085d374acf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow-py/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97456, "scanner": "repobility-docker", "fingerprint": "f56cbaabdce0d1b0cef77d70de56cf60fd0a76176cdfbc90fc23d7af38db9b2b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f56cbaabdce0d1b0cef77d70de56cf60fd0a76176cdfbc90fc23d7af38db9b2b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow-py/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97455, "scanner": "repobility-docker", "fingerprint": "aa35b0f8bb2c3e1a283322ea52e9b76e2ce46fde46c5afb64efd09ceab3a49d2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aa35b0f8bb2c3e1a283322ea52e9b76e2ce46fde46c5afb64efd09ceab3a49d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97454, "scanner": "repobility-docker", "fingerprint": "239503ffbba3cf9cc0a4335eb8e97331f5573cfe0fb06486bb940cbb2c4f064d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|239503ffbba3cf9cc0a4335eb8e97331f5573cfe0fb06486bb940cbb2c4f064d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97452, "scanner": "repobility-docker", "fingerprint": "dc758d7285b4e09ce1b9730e740977739c34c331532a409f34c7535968490411", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc758d7285b4e09ce1b9730e740977739c34c331532a409f34c7535968490411"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97451, "scanner": "repobility-docker", "fingerprint": "c135c2842a10857be8282dd0217215c854e58c1a767e762a4b628a33d96f755c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c135c2842a10857be8282dd0217215c854e58c1a767e762a4b628a33d96f755c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97450, "scanner": "repobility-docker", "fingerprint": "cbe1688933ff260575c1b6fa4be4a193831660e717ff696da8b2b36968fbdb2a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cbe1688933ff260575c1b6fa4be4a193831660e717ff696da8b2b36968fbdb2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args4j/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97449, "scanner": "repobility-docker", "fingerprint": "edfaff70de81b9c48e2508d591bfd8dae3a34d8e9221f3869f3d04e1c07e5734", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|edfaff70de81b9c48e2508d591bfd8dae3a34d8e9221f3869f3d04e1c07e5734"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97446, "scanner": "repobility-docker", "fingerprint": "03f23ceb9af8cbc7425e92ba203f030f52a4407f9eab0e95c973f402a61b34ed", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03f23ceb9af8cbc7425e92ba203f030f52a4407f9eab0e95c973f402a61b34ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97445, "scanner": "repobility-docker", "fingerprint": "067314d294fbdf7ff9898523241b49b956dd1ae6d2bbd1af09df785d225ce541", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|067314d294fbdf7ff9898523241b49b956dd1ae6d2bbd1af09df785d225ce541"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/argo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97442, "scanner": "repobility-docker", "fingerprint": "410b7a3ac13c72e4af2d09381bee9c28c1b0459132e21323e2273a2b6c680cad", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|410b7a3ac13c72e4af2d09381bee9c28c1b0459132e21323e2273a2b6c680cad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/argcomplete/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97441, "scanner": "repobility-docker", "fingerprint": "0a7d61bd5f6cdfbdd2e9c00b79b44f6b260e823fcee71c0524a46e1179b1357e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a7d61bd5f6cdfbdd2e9c00b79b44f6b260e823fcee71c0524a46e1179b1357e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/argcomplete/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97440, "scanner": "repobility-docker", "fingerprint": "f23c6f281bca3bd61fc6522b32d7638bc1fce6103d6e6e0b880e041a13a94307", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f23c6f281bca3bd61fc6522b32d7638bc1fce6103d6e6e0b880e041a13a94307"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arduinojson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97437, "scanner": "repobility-docker", "fingerprint": "505bc14788dcbb496c69b681abe877390db5962064d829ab9b9e234321f359fd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|505bc14788dcbb496c69b681abe877390db5962064d829ab9b9e234321f359fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arduinojson/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97436, "scanner": "repobility-docker", "fingerprint": "075d28d549bf684430b70ea803e021ee050b22f2768d158026e59bae39593b0d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|075d28d549bf684430b70ea803e021ee050b22f2768d158026e59bae39593b0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/archaius-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97435, "scanner": "repobility-docker", "fingerprint": "9c603c50d3d3de92f81051cde73e62b722d2d0cc6474687e8a49bd90081f93e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c603c50d3d3de92f81051cde73e62b722d2d0cc6474687e8a49bd90081f93e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aptos-core/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97432, "scanner": "repobility-docker", "fingerprint": "58da66cf24cb69e0debae64aaeed5393037ea013a717282f5c886c6cd3b1a9ca", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "ghcr.io/aixcc-finals/base-builder-jvm:v1.3.0", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58da66cf24cb69e0debae64aaeed5393037ea013a717282f5c886c6cd3b1a9ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-tika/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97431, "scanner": "repobility-docker", "fingerprint": "54fa7dd17509d84f98db191d77ee9ab996a9c1eac536c031b0748b68f6e53b95", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54fa7dd17509d84f98db191d77ee9ab996a9c1eac536c031b0748b68f6e53b95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-poi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97428, "scanner": "repobility-docker", "fingerprint": "01b1ac8a92f2827d6aa9e4d999688fecba4513dcb2d5e29640dfb5913a311bb1", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|01b1ac8a92f2827d6aa9e4d999688fecba4513dcb2d5e29640dfb5913a311bb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-poi/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97427, "scanner": "repobility-docker", "fingerprint": "d5cc8c8fccf3d83ee281b35a120261b9b9798dfa81c9b20092259c6ac92fed37", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5cc8c8fccf3d83ee281b35a120261b9b9798dfa81c9b20092259c6ac92fed37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-logging-log4cxx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97424, "scanner": "repobility-docker", "fingerprint": "daeaf4d7e370b08e638bf58aea2645f67b8ac5904f6b7d64867d2d66016af4aa", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|daeaf4d7e370b08e638bf58aea2645f67b8ac5904f6b7d64867d2d66016af4aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-logging-log4cxx/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97423, "scanner": "repobility-docker", "fingerprint": "f95f6e038824beef5aef35bee99bb289c3f60fca2bd95b2e717c3c0fc5772467", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f95f6e038824beef5aef35bee99bb289c3f60fca2bd95b2e717c3c0fc5772467"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97420, "scanner": "repobility-docker", "fingerprint": "56e7d74017a843904da3297db4ac1c60eeffe94fa0fdb506cd16b3f6b3904e32", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|56e7d74017a843904da3297db4ac1c60eeffe94fa0fdb506cd16b3f6b3904e32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-felix-dev/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97417, "scanner": "repobility-docker", "fingerprint": "5351ef2ab780b0410546bf9dc337b2eeef4838c364222a472ebd077444cb4962", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5351ef2ab780b0410546bf9dc337b2eeef4838c364222a472ebd077444cb4962"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-felix-dev/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97416, "scanner": "repobility-docker", "fingerprint": "d6764506193f051199a094d29a8bcc246858b19a0cd904d6f9812912940ccaca", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6764506193f051199a094d29a8bcc246858b19a0cd904d6f9812912940ccaca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-cxf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97413, "scanner": "repobility-docker", "fingerprint": "7b8309aa978ac00b5a1893b5b2f80468183129fba828214ca3071d594d5c64d9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b8309aa978ac00b5a1893b5b2f80468183129fba828214ca3071d594d5c64d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-cxf/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97412, "scanner": "repobility-docker", "fingerprint": "236bd59fe65ba2075a1d3ca491cb7c4004d8bc83ae7a6b07eee106225c91f1a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|236bd59fe65ba2075a1d3ca491cb7c4004d8bc83ae7a6b07eee106225c91f1a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97409, "scanner": "repobility-docker", "fingerprint": "bb8340fce8747c4e54878eb8f459710e7329d6e1a36dce2c57a987149685a209", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bb8340fce8747c4e54878eb8f459710e7329d6e1a36dce2c57a987149685a209"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-validator/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97408, "scanner": "repobility-docker", "fingerprint": "2c86cfbb37fb9bc7a2aece468fea02f9a5bbcb0a0eaace25074608be0cedb77a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c86cfbb37fb9bc7a2aece468fea02f9a5bbcb0a0eaace25074608be0cedb77a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-text/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97407, "scanner": "repobility-docker", "fingerprint": "f92d55e8d87f95acf816419e4c014bb6609814af3a674d5b726691d792b7978c", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f92d55e8d87f95acf816419e4c014bb6609814af3a674d5b726691d792b7978c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-text/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97406, "scanner": "repobility-docker", "fingerprint": "53aaa7675599e308f27b350722a237d28cd37938e0094516e5cad6615ec75937", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53aaa7675599e308f27b350722a237d28cd37938e0094516e5cad6615ec75937"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-net/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97403, "scanner": "repobility-docker", "fingerprint": "9934cf654fa89e43323ab7b00c1f2792e560da8e8a30096113d05b6ce587ea9e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9934cf654fa89e43323ab7b00c1f2792e560da8e8a30096113d05b6ce587ea9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-net/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97402, "scanner": "repobility-docker", "fingerprint": "b107e318863baadb3a8542bb8e288e7249696d96ca215918c2b5798a65fc9915", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b107e318863baadb3a8542bb8e288e7249696d96ca215918c2b5798a65fc9915"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-math/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97401, "scanner": "repobility-docker", "fingerprint": "962ece9c7da6b295205493a7df8b4c703ede4dd5e9eee898bf0c0f5208667cc2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|962ece9c7da6b295205493a7df8b4c703ede4dd5e9eee898bf0c0f5208667cc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-logging/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97400, "scanner": "repobility-docker", "fingerprint": "d1bf4ad309d9b62e350e8684d210d64502847c98a535202e4c32e472eda21067", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d1bf4ad309d9b62e350e8684d210d64502847c98a535202e4c32e472eda21067"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-logging/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97399, "scanner": "repobility-docker", "fingerprint": "8a4c18f9427bc6bf41344f5d0d1d5e1d654f04a5caa5bdcedccfbf5d8f97922a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a4c18f9427bc6bf41344f5d0d1d5e1d654f04a5caa5bdcedccfbf5d8f97922a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-lang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97398, "scanner": "repobility-docker", "fingerprint": "db3638bee8e13770eea5e5894cd0bc45939d1314b53b1e4ce8b70a159d92d63d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db3638bee8e13770eea5e5894cd0bc45939d1314b53b1e4ce8b70a159d92d63d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-lang/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97397, "scanner": "repobility-docker", "fingerprint": "fed081c0c9cc3a92ef1a259875adb885e683b3a456bb7b664ee114fd5f884562", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fed081c0c9cc3a92ef1a259875adb885e683b3a456bb7b664ee114fd5f884562"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-jxpath/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97396, "scanner": "repobility-docker", "fingerprint": "ff8f00da6d7437aa1249330fd4e3d61bd93b9577ff95ea589668a315dc35315d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff8f00da6d7437aa1249330fd4e3d61bd93b9577ff95ea589668a315dc35315d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-io/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97395, "scanner": "repobility-docker", "fingerprint": "7b9a461f9bd81f0a86bd968e52f7cb3e4a53d5dd7fad18a9b167b7c1ff411612", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b9a461f9bd81f0a86bd968e52f7cb3e4a53d5dd7fad18a9b167b7c1ff411612"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-io/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97394, "scanner": "repobility-docker", "fingerprint": "58f202c0ebca578dfad98af682580db21dcfe30a04c43d759eaeb8df0a7b07f6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58f202c0ebca578dfad98af682580db21dcfe30a04c43d759eaeb8df0a7b07f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-imaging/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97393, "scanner": "repobility-docker", "fingerprint": "921ba40e205c7ff622fc2a1a1aeda72e55740ac6b192f39adcad9d12393f0ec3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|921ba40e205c7ff622fc2a1a1aeda72e55740ac6b192f39adcad9d12393f0ec3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-geometry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97392, "scanner": "repobility-docker", "fingerprint": "ed5f81e84ae145368a30308809cc04f78dc3a120d4afa602cc98fda35adba7c0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed5f81e84ae145368a30308809cc04f78dc3a120d4afa602cc98fda35adba7c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-geometry/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97391, "scanner": "repobility-docker", "fingerprint": "78e3021d2175afd513a907183e545e963415962ed6838aeeb24a1502ef87f7c7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78e3021d2175afd513a907183e545e963415962ed6838aeeb24a1502ef87f7c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-fileupload/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97390, "scanner": "repobility-docker", "fingerprint": "dd7dd0152a4bfb8c6f92af9c160dd38d0d385752306a431ba03f9e012a1848b9", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd7dd0152a4bfb8c6f92af9c160dd38d0d385752306a431ba03f9e012a1848b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-fileupload/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97389, "scanner": "repobility-docker", "fingerprint": "a3acf07d0912c157f4f6a38d5050c02d0257724f6bbed3a3afd539979813992d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a3acf07d0912c157f4f6a38d5050c02d0257724f6bbed3a3afd539979813992d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-csv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97388, "scanner": "repobility-docker", "fingerprint": "38cd96559c05a1854cca2ce4777a97360ce8e0f46b043c4d16ba15a1dabd3018", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38cd96559c05a1854cca2ce4777a97360ce8e0f46b043c4d16ba15a1dabd3018"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-csv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97387, "scanner": "repobility-docker", "fingerprint": "fc4c6fef41679d671fb9ef5e6a380a76f49017803122108d7e241225a6e0f2a4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc4c6fef41679d671fb9ef5e6a380a76f49017803122108d7e241225a6e0f2a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-configuration/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97386, "scanner": "repobility-docker", "fingerprint": "a4312e4e7fce0cbedb89db177ea286dd0fb40f7994df97b5400d18180871d4b3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a4312e4e7fce0cbedb89db177ea286dd0fb40f7994df97b5400d18180871d4b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-configuration/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97385, "scanner": "repobility-docker", "fingerprint": "d7bee146d1152bbe4af7642dcf81455b726280915696d72d50af61f3af9c68e6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7bee146d1152bbe4af7642dcf81455b726280915696d72d50af61f3af9c68e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-compress/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97384, "scanner": "repobility-docker", "fingerprint": "52254ac9313a62ca19a7099098d981feabda0a3b2976b61f99ff451340518807", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|52254ac9313a62ca19a7099098d981feabda0a3b2976b61f99ff451340518807"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-compress/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97383, "scanner": "repobility-docker", "fingerprint": "7e82880f8a0baf58c4c7357e265089531c028148c53a14866acb7ec2e6d4fe63", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e82880f8a0baf58c4c7357e265089531c028148c53a14866acb7ec2e6d4fe63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-collections/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97382, "scanner": "repobility-docker", "fingerprint": "7168b49879e9e46483079e4086f067748aa8b45526f60dc37408486e8233a56b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7168b49879e9e46483079e4086f067748aa8b45526f60dc37408486e8233a56b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-collections/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97381, "scanner": "repobility-docker", "fingerprint": "b46da040b9fc45ca975d86aa08d796013e50194eb850c8db9eb8274028319d61", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b46da040b9fc45ca975d86aa08d796013e50194eb850c8db9eb8274028319d61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-codec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97380, "scanner": "repobility-docker", "fingerprint": "0e77f5c13cd392456dc65bf5162b9cbbdd4424d618d289643cd4b44ed09eb04b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e77f5c13cd392456dc65bf5162b9cbbdd4424d618d289643cd4b44ed09eb04b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-codec/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97379, "scanner": "repobility-docker", "fingerprint": "3fdac99f69d5c8f0a6a9d5fb1ab8e9ffb6cf12f21959832a20717555fe656295", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3fdac99f69d5c8f0a6a9d5fb1ab8e9ffb6cf12f21959832a20717555fe656295"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-cli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97378, "scanner": "repobility-docker", "fingerprint": "2f125aa3fe9a662f56782ef6e3eeb56b38515514986a7335912664f85cc556da", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2f125aa3fe9a662f56782ef6e3eeb56b38515514986a7335912664f85cc556da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-cli/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97377, "scanner": "repobility-docker", "fingerprint": "7235dd6b5d6fdce90600f19802a78c371fe35a40100ba49229cb70edd1dfcdbf", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7235dd6b5d6fdce90600f19802a78c371fe35a40100ba49229cb70edd1dfcdbf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-beanutils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97376, "scanner": "repobility-docker", "fingerprint": "7a04e3879e3f23c105679ab2df35d0afd6d6d9c6cc5997670db2995ec1e3653e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a04e3879e3f23c105679ab2df35d0afd6d6d9c6cc5997670db2995ec1e3653e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-beanutils/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97375, "scanner": "repobility-docker", "fingerprint": "3833dd7579f415314896fde9e6ce58f222d6859fc696b4d259fa91eac1c2da6c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3833dd7579f415314896fde9e6ce58f222d6859fc696b4d259fa91eac1c2da6c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-bcel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97374, "scanner": "repobility-docker", "fingerprint": "770440234ed04a5b5b1124bfff3cc57822a78fac624f2b616e9c805a04d26298", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|770440234ed04a5b5b1124bfff3cc57822a78fac624f2b616e9c805a04d26298"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-bcel/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97373, "scanner": "repobility-docker", "fingerprint": "62eb3de8d8101f48ecaa282c0314d0743b4907b34bcb248d35f42fe2fea6e991", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62eb3de8d8101f48ecaa282c0314d0743b4907b34bcb248d35f42fe2fea6e991"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-axis2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97371, "scanner": "repobility-docker", "fingerprint": "8b47b1c5e54e41e052ef9304807619e5507fb7117a459791b395932d6ec2aa68", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b47b1c5e54e41e052ef9304807619e5507fb7117a459791b395932d6ec2aa68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-axis2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97370, "scanner": "repobility-docker", "fingerprint": "505177983f62bb191b2d09b98182fbb10301c8c326ab360e1b9c9f703f590d96", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|505177983f62bb191b2d09b98182fbb10301c8c326ab360e1b9c9f703f590d96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/antlr4-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97369, "scanner": "repobility-docker", "fingerprint": "991d3408051554db679242c0bc462c95122725a3084ed0df67db69022551a1c7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|991d3408051554db679242c0bc462c95122725a3084ed0df67db69022551a1c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/antlr4-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97368, "scanner": "repobility-docker", "fingerprint": "22c0f1a585fd981b86ecb18cc62d9072a5c7723d38d6015e5a7a08b3999fb5a2", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22c0f1a585fd981b86ecb18cc62d9072a5c7723d38d6015e5a7a08b3999fb5a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/antlr3-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97367, "scanner": "repobility-docker", "fingerprint": "062d3177a15f5637ad7d5062c3b98382bf908c2c3463f48db56a5331be6f8ad5", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|062d3177a15f5637ad7d5062c3b98382bf908c2c3463f48db56a5331be6f8ad5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/antlr3-java/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97366, "scanner": "repobility-docker", "fingerprint": "a579eec4eefa2198dfb5e66e01e14b884fdb66e8d8010871853f5757da821082", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a579eec4eefa2198dfb5e66e01e14b884fdb66e8d8010871853f5757da821082"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ansible/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97363, "scanner": "repobility-docker", "fingerprint": "82fe1183f0670acc9cdd3aa67d965c540aff7c3daaed3f457895d180dcb53fca", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82fe1183f0670acc9cdd3aa67d965c540aff7c3daaed3f457895d180dcb53fca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aniso8601/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97362, "scanner": "repobility-docker", "fingerprint": "3eb79ddebb16d2a4b5078d78c34afa4bc15b8601097cb3e6eb04e72861a23e99", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3eb79ddebb16d2a4b5078d78c34afa4bc15b8601097cb3e6eb04e72861a23e99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aniso8601/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97361, "scanner": "repobility-docker", "fingerprint": "7acf6c6a9d9fe70b90c1f013f2226d2047af800f445959b12813d66d259cda38", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-rust", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7acf6c6a9d9fe70b90c1f013f2226d2047af800f445959b12813d66d259cda38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/anise/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97359, "scanner": "repobility-docker", "fingerprint": "5a45834525456d8e6e1eae1e76d3a0416b2696986c974a86a995cf31c1c98e14", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-rust", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a45834525456d8e6e1eae1e76d3a0416b2696986c974a86a995cf31c1c98e14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/anise/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97358, "scanner": "repobility-docker", "fingerprint": "a4c2e711840d0f3366dbeb0f19a82bcd44d87930752cf43a4ca7d0a5cd626cf7", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-jvm", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a4c2e711840d0f3366dbeb0f19a82bcd44d87930752cf43a4ca7d0a5cd626cf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angus-mail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97357, "scanner": "repobility-docker", "fingerprint": "d7014ea4cd7a9c071a909a24a6d92cb555dc0fe34abc98cb4ba0d0dbcca2b339", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-jvm", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7014ea4cd7a9c071a909a24a6d92cb555dc0fe34abc98cb4ba0d0dbcca2b339"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angus-mail/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97356, "scanner": "repobility-docker", "fingerprint": "2682bf43f989521d3a2d2859069b026f36fbf57dc3d00eed2b2aee6c7e8f7068", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-javascript", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2682bf43f989521d3a2d2859069b026f36fbf57dc3d00eed2b2aee6c7e8f7068"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97355, "scanner": "repobility-docker", "fingerprint": "18f2dd70f1adb57abe6a02da59d1185493f1dc962d6e57f7a0b46cb0b25442b0", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-javascript", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|18f2dd70f1adb57abe6a02da59d1185493f1dc962d6e57f7a0b46cb0b25442b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97354, "scanner": "repobility-docker", "fingerprint": "58b5ebf946ab4cbdc65a1e4dfed1942cf8691acacb37e88662a5b68a64d128d3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|58b5ebf946ab4cbdc65a1e4dfed1942cf8691acacb37e88662a5b68a64d128d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angle/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97352, "scanner": "repobility-docker", "fingerprint": "98d0f9dc43e9fad7b2e170a43a9c88b4b1a5361d18ee60ed0e0be63dbd6740fc", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98d0f9dc43e9fad7b2e170a43a9c88b4b1a5361d18ee60ed0e0be63dbd6740fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angle/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97351, "scanner": "repobility-docker", "fingerprint": "54337f8c8cd08311d06065c1f3bfb61bd5ce37eabbd854af8ad397f3901978de", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder@sha256:19782f7fe8092843368894dbc471ce9b30dd6a2813946071a36e8b05f5b1e27e", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54337f8c8cd08311d06065c1f3bfb61bd5ce37eabbd854af8ad397f3901978de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ampproject/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97348, "scanner": "repobility-docker", "fingerprint": "c2b5dc27d30eb4160e8a07bb48704c5942e6ca55a7e3e6bff7c3745230ad0c2a", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2b5dc27d30eb4160e8a07bb48704c5942e6ca55a7e3e6bff7c3745230ad0c2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/alembic/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97345, "scanner": "repobility-docker", "fingerprint": "1b3ec2da7d23f216eba47e658af5a1566e75192bd9905096609f53d8b91e05d6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b3ec2da7d23f216eba47e658af5a1566e75192bd9905096609f53d8b91e05d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/alembic/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97344, "scanner": "repobility-docker", "fingerprint": "cff44a59befded030c76c7eaf30a75358ef296e1afbf0cac03476d42f33535ef", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cff44a59befded030c76c7eaf30a75358ef296e1afbf0cac03476d42f33535ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/airflow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97341, "scanner": "repobility-docker", "fingerprint": "7595c03c4c2a99e708d655eb5ab4a6ec676ff7eb65ed69d83c35123c77a3b7d7", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7595c03c4c2a99e708d655eb5ab4a6ec676ff7eb65ed69d83c35123c77a3b7d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/airflow/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97340, "scanner": "repobility-docker", "fingerprint": "96905c2824d6f8b8be6b650371b289b834c8e30da48f8476d7125fed7254ac16", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96905c2824d6f8b8be6b650371b289b834c8e30da48f8476d7125fed7254ac16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97335, "scanner": "repobility-docker", "fingerprint": "2497050227a7239ae60d18168f66615a2f77a11ce3af0d6891cf39a469c29297", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2497050227a7239ae60d18168f66615a2f77a11ce3af0d6891cf39a469c29297"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97334, "scanner": "repobility-docker", "fingerprint": "63205c325dbe676e30693ef59ffd03c152aadffd2ef676775a9e2c6d3af96dbd", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63205c325dbe676e30693ef59ffd03c152aadffd2ef676775a9e2c6d3af96dbd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/adal/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97333, "scanner": "repobility-docker", "fingerprint": "147e1ec88cdfd2d83ba00b7f7e0694ad0c6a150f47989288d884e42544198d72", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|147e1ec88cdfd2d83ba00b7f7e0694ad0c6a150f47989288d884e42544198d72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/adal/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97332, "scanner": "repobility-docker", "fingerprint": "016b90711c7c492d8b91cc32cdfe64b94b73736df11040dc8f48d2cf109da6cb", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|016b90711c7c492d8b91cc32cdfe64b94b73736df11040dc8f48d2cf109da6cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ada-url/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97329, "scanner": "repobility-docker", "fingerprint": "a1909724197f0999320f025182fa5f6991dfec9fa0f9d69a3d6a4a2b02e543b3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a1909724197f0999320f025182fa5f6991dfec9fa0f9d69a3d6a4a2b02e543b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ada-url/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97328, "scanner": "repobility-docker", "fingerprint": "28c33ecb2fd189b7f045dc832c05eb39f7cb7614eb6b479772c82d18801f9519", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28c33ecb2fd189b7f045dc832c05eb39f7cb7614eb6b479772c82d18801f9519"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/abseil-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97327, "scanner": "repobility-docker", "fingerprint": "7e73c08686484a2e5d6d624de3d040c189f91a91b926b8405dba657986bbe537", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e73c08686484a2e5d6d624de3d040c189f91a91b926b8405dba657986bbe537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/abseil-py/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97326, "scanner": "repobility-docker", "fingerprint": "6b043e222d8778476b508d73d7a35a9f966d936b0905ed7cbabb1f7b9ecf5257", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:ubuntu-24-04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b043e222d8778476b508d73d7a35a9f966d936b0905ed7cbabb1f7b9ecf5257"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/abseil-cpp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97325, "scanner": "repobility-docker", "fingerprint": "0c75eb163df8d5cf01360867066f14053815dd154c00274199cddc77c6ddd458", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "ubuntu:16.04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c75eb163df8d5cf01360867066f14053815dd154c00274199cddc77c6ddd458"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/uploader/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR009", "level": "warning", "message": {"text": "Dockerfile separates apt update from install"}, "properties": {"repobilityId": 97323, "scanner": "repobility-docker", "fingerprint": "1fda3537ce22113d8a257f8c749f169ecaaa41eb07d269ee231f0c9c2102b3ec", "category": "docker", "severity": "medium", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Package index update appears without package installation in the same layer.", "evidence": {"rule_id": "DKR009", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1fda3537ce22113d8a257f8c749f169ecaaa41eb07d269ee231f0c9c2102b3ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/uploader/Dockerfile"}, "region": {"startLine": 3}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97322, "scanner": "repobility-docker", "fingerprint": "d004e271ed1d407a4a0426fb916ab3d2a74ed825106a47de876de71687b7329f", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-clang-full", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d004e271ed1d407a4a0426fb916ab3d2a74ed825106a47de876de71687b7329f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/indexer/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97319, "scanner": "repobility-docker", "fingerprint": "f24f2c8869f8bf9d764adaef18b22c3d1ce639bf83aa5fb5aa02e8fb24d77d69", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f24f2c8869f8bf9d764adaef18b22c3d1ce639bf83aa5fb5aa02e8fb24d77d69", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/indexer/Dockerfile"}, "region": {"startLine": 5}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97318, "scanner": "repobility-docker", "fingerprint": "cecf7ca97c7e6646ccd07ffd9d053388a93bae0e7e6671bd9665b75d2127e8c2", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-clang-full", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cecf7ca97c7e6646ccd07ffd9d053388a93bae0e7e6671bd9665b75d2127e8c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/indexer/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97317, "scanner": "repobility-docker", "fingerprint": "c60ca60a1d432d4310c20d4d7e43df93810d13b4b634be0cee280fb914ad550c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/cloud-builders/gcloud", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c60ca60a1d432d4310c20d4d7e43df93810d13b4b634be0cee280fb914ad550c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/chronos/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97314, "scanner": "repobility-docker", "fingerprint": "ed1d115796e654ea3cbf08e98afb47a6cbae57315a411a4e53af7a0f42da16a8", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/cloud-builders/gcloud", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed1d115796e654ea3cbf08e98afb47a6cbae57315a411a4e53af7a0f42da16a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/chronos/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97313, "scanner": "repobility-docker", "fingerprint": "31f6cdb3d4d68819cfaa426ed756a6d041de2def8d515f175e1b124437bcaa11", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31f6cdb3d4d68819cfaa426ed756a6d041de2def8d515f175e1b124437bcaa11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/pytorch-lightning-1.5.10/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97312, "scanner": "repobility-docker", "fingerprint": "99688cc852b20d2f67030b19d3d9620de83cb11003b67d24029e557dc4dd4cda", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|99688cc852b20d2f67030b19d3d9620de83cb11003b67d24029e557dc4dd4cda", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/pytorch-lightning-1.5.10/Dockerfile"}, "region": {"startLine": 29}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97309, "scanner": "repobility-docker", "fingerprint": "6c9cdcb78c6cd2de57dfcffe735b74d6776ee6f99e3aaa620183442df27e0122", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-python", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c9cdcb78c6cd2de57dfcffe735b74d6776ee6f99e3aaa620183442df27e0122"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/pytorch-lightning-1.5.10/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97308, "scanner": "repobility-docker", "fingerprint": "d39e7788d7b659dbe7015e7209033f93d355f4bc7645507cb018faa39e1db169", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d39e7788d7b659dbe7015e7209033f93d355f4bc7645507cb018faa39e1db169"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97307, "scanner": "repobility-docker", "fingerprint": "c369502e5919be7c0c61896828339c4038ab071d1b7974a5a8f62dcfb4664c1a", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c369502e5919be7c0c61896828339c4038ab071d1b7974a5a8f62dcfb4664c1a", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97304, "scanner": "repobility-docker", "fingerprint": "99d5ea0497b382425484d71e131de28dfdd2dbc5ca08f423722fa124b0555eea", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99d5ea0497b382425484d71e131de28dfdd2dbc5ca08f423722fa124b0555eea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97303, "scanner": "repobility-docker", "fingerprint": "bcb32fb4dbd4b028ffd9c36a4e50b747a12e5f848d5f4855c519cf199795d80c", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bcb32fb4dbd4b028ffd9c36a4e50b747a12e5f848d5f4855c519cf199795d80c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_data/external-project/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97302, "scanner": "repobility-docker", "fingerprint": "76bc4e3dca09ab1da4e4ee6628e0ada070edefa5c83579767ec7a43500baeaff", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|76bc4e3dca09ab1da4e4ee6628e0ada070edefa5c83579767ec7a43500baeaff", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_data/external-project/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97299, "scanner": "repobility-docker", "fingerprint": "cb2bfd21f9a75bbbca49d0bdb24aad991bf26e8686cc5d5bed5a6b30252fc802", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb2bfd21f9a75bbbca49d0bdb24aad991bf26e8686cc5d5bed5a6b30252fc802"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_data/external-project/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97298, "scanner": "repobility-docker", "fingerprint": "7b32c5d0bc91a7cc987e1546f4006800d8149cf436af58f877276b74af239a51", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-runner", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b32c5d0bc91a7cc987e1546f4006800d8149cf436af58f877276b74af239a51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR017", "level": "warning", "message": {"text": "Dockerfile installs dependencies after copying the full source tree"}, "properties": {"repobilityId": 97297, "scanner": "repobility-docker", "fingerprint": "a1d71c6b6a4a0c13c6dd32c6a6e51a40bffea4cbb423c0431841f508cee1e64e", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Broad context copy at line 35 appears before dependency installation.", "evidence": {"rule_id": "DKR017", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "broad_copy_line": 35, "correlation_key": "fp|a1d71c6b6a4a0c13c6dd32c6a6e51a40bffea4cbb423c0431841f508cee1e64e", "dependency_install_line": 39}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 39}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97293, "scanner": "repobility-docker", "fingerprint": "7bd29969dcdf42c9bc3b278ab5f7acd12480e14bb2af1ea68cbbe56ab5b927bf", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-runner", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7bd29969dcdf42c9bc3b278ab5f7acd12480e14bb2af1ea68cbbe56ab5b927bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97292, "scanner": "repobility-docker", "fingerprint": "4b99e9e54122dbd0a2f777c389580a057d3eb1e727b0dd7694bea472f9323f46", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "python:3.11-bullseye", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b99e9e54122dbd0a2f777c389580a057d3eb1e727b0dd7694bea472f9323f46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/fuzz-introspector-webapp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97290, "scanner": "repobility-docker", "fingerprint": "943be8eedb4f3a69beb5ad159b6d5f5766e6ebffc8cf76b2a519a025926c6a97", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/cloud-builders/gcloud", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|943be8eedb4f3a69beb5ad159b6d5f5766e6ebffc8cf76b2a519a025926c6a97"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR017", "level": "warning", "message": {"text": "Dockerfile installs dependencies after copying the full source tree"}, "properties": {"repobilityId": 97289, "scanner": "repobility-docker", "fingerprint": "0bf9576179e8064cbe0fa75239652a21bae090fd1259882bf1c7d3ef1489e6ff", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Broad context copy at line 20 appears before dependency installation.", "evidence": {"rule_id": "DKR017", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "broad_copy_line": 20, "correlation_key": "fp|0bf9576179e8064cbe0fa75239652a21bae090fd1259882bf1c7d3ef1489e6ff", "dependency_install_line": 21}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97287, "scanner": "repobility-docker", "fingerprint": "2f4e0f10fef26edb294fa45220fad53d6c97c5e87556cdef28633ac964aa1747", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2f4e0f10fef26edb294fa45220fad53d6c97c5e87556cdef28633ac964aa1747", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97284, "scanner": "repobility-docker", "fingerprint": "d73c5aa4cc7069c40e3bdf4c17d9f24e13fcb3a83f64bbf20bc99a3b04b01389", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/cloud-builders/gcloud", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d73c5aa4cc7069c40e3bdf4c17d9f24e13fcb3a83f64bbf20bc99a3b04b01389"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97283, "scanner": "repobility-docker", "fingerprint": "0f38d108c93c42f338098b4dd4b32b704c3b759214c9dd59924466912867649d", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-runner", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f38d108c93c42f338098b4dd4b32b704c3b759214c9dd59924466912867649d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/build_status/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97282, "scanner": "repobility-docker", "fingerprint": "04f282431c94b108b25ef0839521165bb6e87e80ec6aef902c5b0915f0bb2947", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-runner", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04f282431c94b108b25ef0839521165bb6e87e80ec6aef902c5b0915f0bb2947"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/build_status/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97281, "scanner": "repobility-docker", "fingerprint": "a68332899dc1bfcec8ff7e577fa0cc2e83f0e2569077882dd75a2fdb2ddd0670", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "python:3.11-bullseye", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a68332899dc1bfcec8ff7e577fa0cc2e83f0e2569077882dd75a2fdb2ddd0670"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/blog/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97280, "scanner": "repobility-docker", "fingerprint": "8788d29ce9de254de26a397ecf03d0316b90b53141ddc813cd28682abab2e605", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-runner", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8788d29ce9de254de26a397ecf03d0316b90b53141ddc813cd28682abab2e605"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner-debug/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97276, "scanner": "repobility-docker", "fingerprint": "8b8412f30292c02d162de8a42fbdb27b9f781b714a4cf6830779b69bbe43fd9d", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-runner", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b8412f30292c02d162de8a42fbdb27b9f781b714a4cf6830779b69bbe43fd9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner-debug/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97275, "scanner": "repobility-docker", "fingerprint": "9007f0bf3dff9dcb8509c5d9b93adb574dccdd7c422578740b86214110a9a1d3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-image", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9007f0bf3dff9dcb8509c5d9b93adb574dccdd7c422578740b86214110a9a1d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 34}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97272, "scanner": "repobility-docker", "fingerprint": "47285f2fdf8158090441678e743d7a195ebb22821f6d13c327bf587db6d34ee3", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-image", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|47285f2fdf8158090441678e743d7a195ebb22821f6d13c327bf587db6d34ee3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 34}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97271, "scanner": "repobility-docker", "fingerprint": "abb63ef9bf562176f040b98a9b8e98e1fa2c520b9380c12bd6e63c4a10ead7b6", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|abb63ef9bf562176f040b98a9b8e98e1fa2c520b9380c12bd6e63c4a10ead7b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 31}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97270, "scanner": "repobility-docker", "fingerprint": "7d9223626fba66c4a0fb67d9ba34d68db3a5153ae5794b671a01887e0cf5d6cd", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder-ruby", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d9223626fba66c4a0fb67d9ba34d68db3a5153ae5794b671a01887e0cf5d6cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97269, "scanner": "repobility-docker", "fingerprint": "9ede78abe10cf3ae06d10ace8c11b7bec0168b695ad51c3e2a2436bfa5099476", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-clang", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ede78abe10cf3ae06d10ace8c11b7bec0168b695ad51c3e2a2436bfa5099476"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97266, "scanner": "repobility-docker", "fingerprint": "d11a44150a0539c7a58b8261ed0797dd09121d4534b298305667b374330f378a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-image", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d11a44150a0539c7a58b8261ed0797dd09121d4534b298305667b374330f378a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97265, "scanner": "repobility-docker", "fingerprint": "216117458e60c69978b2e2d0797c68d71eb0fa381c9506730474b832c94a7186", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "$parent_image", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|216117458e60c69978b2e2d0797c68d71eb0fa381c9506730474b832c94a7186"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-image/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97261, "scanner": "repobility-docker", "fingerprint": "42fed6780ca94d997b9e9e49fd2a77fb69f91157c34880cc29ea10158e57b1b3", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-image", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42fed6780ca94d997b9e9e49fd2a77fb69f91157c34880cc29ea10158e57b1b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-clang/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97258, "scanner": "repobility-docker", "fingerprint": "f0ef3afdf6ba51e38796e892e3a4e30fa7d04c87471d46a0b5212c151fc27f7b", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-image", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0ef3afdf6ba51e38796e892e3a4e30fa7d04c87471d46a0b5212c151fc27f7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-clang/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97257, "scanner": "repobility-docker", "fingerprint": "fade7adcfa7172af5e1f67ee260b4b8f0ad84c7a26ced9d58189ec6a53ce2721", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fade7adcfa7172af5e1f67ee260b4b8f0ad84c7a26ced9d58189ec6a53ce2721"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-swift/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97256, "scanner": "repobility-docker", "fingerprint": "786908c8906346faeed34e752b30ab5b371a233ca869f2f1ae60b4da8b46f533", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|786908c8906346faeed34e752b30ab5b371a233ca869f2f1ae60b4da8b46f533"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-swift/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97255, "scanner": "repobility-docker", "fingerprint": "c5e566818d8ababfd17239826da1a1fbfcf8aae33081b888202ca001cef941c5", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5e566818d8ababfd17239826da1a1fbfcf8aae33081b888202ca001cef941c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97254, "scanner": "repobility-docker", "fingerprint": "031932015876f847744fa4256d65c3132063278933b2305757ed534e7d056f42", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|031932015876f847744fa4256d65c3132063278933b2305757ed534e7d056f42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-rust/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97253, "scanner": "repobility-docker", "fingerprint": "f124b50cbf0e298fd676c2df4ab3bee5dea9db5ac1793695063cacbb64a75924", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f124b50cbf0e298fd676c2df4ab3bee5dea9db5ac1793695063cacbb64a75924"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97252, "scanner": "repobility-docker", "fingerprint": "4a5c59f9bce1958eda30c0253e49401239e3c3da245a9e73d6f44a8a6460a08a", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a5c59f9bce1958eda30c0253e49401239e3c3da245a9e73d6f44a8a6460a08a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-ruby/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97251, "scanner": "repobility-docker", "fingerprint": "73a155c86fcf60c6f6cf0054312b2f4972aa2ae7f8a525f246c1d61135076b66", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73a155c86fcf60c6f6cf0054312b2f4972aa2ae7f8a525f246c1d61135076b66"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97250, "scanner": "repobility-docker", "fingerprint": "b620978c1f358e66b4a0acdaf41201aaa317fb87022f71b3458cb6724f1af8ca", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b620978c1f358e66b4a0acdaf41201aaa317fb87022f71b3458cb6724f1af8ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97249, "scanner": "repobility-docker", "fingerprint": "1b4262b3ee09d72a9f7ec47b90ff6eb28e9166865a93ca32446082b7151dc3e4", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "base", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b4262b3ee09d72a9f7ec47b90ff6eb28e9166865a93ca32446082b7151dc3e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-jvm/Dockerfile"}, "region": {"startLine": 59}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97248, "scanner": "repobility-docker", "fingerprint": "c3df180369a39a5fbd798b6885feb9ec20a8b85a2f1eb955afd7846ddf52bb4f", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c3df180369a39a5fbd798b6885feb9ec20a8b85a2f1eb955afd7846ddf52bb4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-jvm/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97247, "scanner": "repobility-docker", "fingerprint": "273df2a665124c7fec38e15ce5bb870572638fa7e67c61b1ec2204415d307027", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|273df2a665124c7fec38e15ce5bb870572638fa7e67c61b1ec2204415d307027"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-javascript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97246, "scanner": "repobility-docker", "fingerprint": "04214790c95d966e24492e179cf6d13ec654c47bd55183e9f98ee6aefad6be56", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04214790c95d966e24492e179cf6d13ec654c47bd55183e9f98ee6aefad6be56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-javascript/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97245, "scanner": "repobility-docker", "fingerprint": "a80176b3385aedd380eecb0f27d78752904580fe2c653f205368c7291a9975b1", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a80176b3385aedd380eecb0f27d78752904580fe2c653f205368c7291a9975b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97244, "scanner": "repobility-docker", "fingerprint": "a697feec83d870246a92e5e97af4554b22978c257ab1de57ea9f7d1485ed6f05", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a697feec83d870246a92e5e97af4554b22978c257ab1de57ea9f7d1485ed6f05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-go/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97243, "scanner": "repobility-docker", "fingerprint": "0457b2533fcca767e506c338cbab505ea422e261c9b6c8a0101b8a7055d03c22", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0457b2533fcca767e506c338cbab505ea422e261c9b6c8a0101b8a7055d03c22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-fuzzbench/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97242, "scanner": "repobility-docker", "fingerprint": "6a355b47a4592d1308e42ff2583b01dd2a9bb7c48ab9397ff0c6b8fc6fd47110", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-builder", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a355b47a4592d1308e42ff2583b01dd2a9bb7c48ab9397ff0c6b8fc6fd47110"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-fuzzbench/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97241, "scanner": "repobility-docker", "fingerprint": "6b552a879aa9bf6eea247143a57b221ddacafb6bc29e73da5a77eaff1c717bc6", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-clang", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6b552a879aa9bf6eea247143a57b221ddacafb6bc29e73da5a77eaff1c717bc6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97238, "scanner": "repobility-docker", "fingerprint": "5c362a71f870b03ad3d07cbebb3262e3209623639f8cd0d643e54ac556affb3f", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c362a71f870b03ad3d07cbebb3262e3209623639f8cd0d643e54ac556affb3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 196}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97237, "scanner": "repobility-docker", "fingerprint": "e50c66a5b1bbe79419c86d1351ba086fa135c47d1fdc429e894e2a14370a7183", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e50c66a5b1bbe79419c86d1351ba086fa135c47d1fdc429e894e2a14370a7183"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 195}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97236, "scanner": "repobility-docker", "fingerprint": "a7257d389eb90387bddac3c15247a232a7864355a07d0743560ffba1568dfde1", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7257d389eb90387bddac3c15247a232a7864355a07d0743560ffba1568dfde1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 194}}}]}, {"ruleId": "DKR013", "level": "warning", "message": {"text": "Dockerfile ADD downloads remote content"}, "properties": {"repobilityId": 97235, "scanner": "repobility-docker", "fingerprint": "c793ef2effdc2b0d097b2d203c43699c36c52e27e08a83ab176b65c85130da07", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "ADD instruction references a remote URL.", "evidence": {"rule_id": "DKR013", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c793ef2effdc2b0d097b2d203c43699c36c52e27e08a83ab176b65c85130da07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 193}}}]}, {"ruleId": "DKR002", "level": "warning", "message": {"text": "Dockerfile base image has no explicit tag"}, "properties": {"repobilityId": 97232, "scanner": "repobility-docker", "fingerprint": "027553a3e8f12b50813296088deaf5099855940117c1a1a8550187bc1c43c623", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Image reference has no tag or digest.", "evidence": {"image": "gcr.io/oss-fuzz-base/base-clang", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|027553a3e8f12b50813296088deaf5099855940117c1a1a8550187bc1c43c623"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 97230, "scanner": "repobility-docker", "fingerprint": "53d5d4f8adb2e31e0da8779803fbbcad2852275f922a4208225714362c5b63ba", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder-python:v1", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53d5d4f8adb2e31e0da8779803fbbcad2852275f922a4208225714362c5b63ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".clusterfuzzlite/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "DKR014", "level": "warning", "message": {"text": "Dockerfile copies broad context with incomplete .dockerignore"}, "properties": {"repobilityId": 97229, "scanner": "repobility-docker", "fingerprint": "a85093e50f60aa6566c890e22434a6124477ecc043e31817efa7d52a294957b2", "category": "docker", "severity": "medium", "confidence": 0.76, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Broad context copy found and .dockerignore misses sensitive defaults.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a85093e50f60aa6566c890e22434a6124477ecc043e31817efa7d52a294957b2", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".clusterfuzzlite/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "AGT015", "level": "warning", "message": {"text": "Remote install command pipes network code directly to a shell"}, "properties": {"repobilityId": 97228, "scanner": "repobility-agent-runtime", "fingerprint": "0402d2e2e80a565c49c7ac8ce2e811933264f5751dc8850fe475fb1531140453", "category": "dependency", "severity": "medium", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File contains a remote download piped directly to a shell without visible checksum or signature verification.", "evidence": {"rule_id": "AGT015", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|0402d2e2e80a565c49c7ac8ce2e811933264f5751dc8850fe475fb1531140453"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/build.sh"}, "region": {"startLine": 19}}}]}, {"ruleId": "AGT015", "level": "warning", "message": {"text": "Remote install command pipes network code directly to a shell"}, "properties": {"repobilityId": 97227, "scanner": "repobility-agent-runtime", "fingerprint": "1a1de5973743b8873d37ad62b61288a87bfc04df79382dc6722061a4a1f1642a", "category": "dependency", "severity": "medium", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File contains a remote download piped directly to a shell without visible checksum or signature verification.", "evidence": {"rule_id": "AGT015", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|1a1de5973743b8873d37ad62b61288a87bfc04df79382dc6722061a4a1f1642a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/install_rust.sh"}, "region": {"startLine": 18}}}]}, {"ruleId": "SEC015", "level": "warning", "message": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "properties": {"repobilityId": 97191, "scanner": "repobility-threat-engine", "fingerprint": "fd981c4fb3d554705afebf21ba9232c0447195bb5fa92874d55307173eb01937", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "evidence": {"match": "def build_token", "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "rule_id": "SEC015", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|23|sec015"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msal/fuzz_tokencache.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "SEC007", "level": "warning", "message": {"text": "[SEC007] Unsafe Deserialization: Unsafe deserialization can execute arbitrary code."}, "properties": {"repobilityId": 97186, "scanner": "repobility-threat-engine", "fingerprint": "57c66910948626b72fe4e9c79b06783b79720fbdb826bf5ae0fefcb18803885c", "category": "deserialization", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "pickle.loads(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC007", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|101|sec007"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/fuzz_md.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "SEC007", "level": "warning", "message": {"text": "[SEC007] Unsafe Deserialization: Unsafe deserialization can execute arbitrary code."}, "properties": {"repobilityId": 97185, "scanner": "repobility-threat-engine", "fingerprint": "c98ade06b896edb1bab0805462f434eb4da808d01973fa00d6991cf774bacef0", "category": "deserialization", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "yaml.load(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC007", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|projects/js-yaml/fuzz.js|28|sec007"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/fuzz.js"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC123", "level": "warning", "message": {"text": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environment variables, framework internals \u2014 sometimes triggers RCE (Django debug page with arbitrary template eval)."}, "properties": {"repobilityId": 97179, "scanner": "repobility-threat-engine", "fingerprint": "71d7ec1b5af351ecc2bbb78de81275de0c3ebdc076ddc532f3c4bdec97135230", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "debug=true", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC123", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|71d7ec1b5af351ecc2bbb78de81275de0c3ebdc076ddc532f3c4bdec97135230"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hsqldb/build.sh"}, "region": {"startLine": 19}}}]}, {"ruleId": "SEC001", "level": "warning", "message": {"text": "[SEC001] Hardcoded Password: Hardcoded password found in source code."}, "properties": {"repobilityId": 97175, "scanner": "repobility-threat-engine", "fingerprint": "bfd672f1088e4524d81cdfe6db3766e9eab1dd4b5850856cad437bfe87adb35b", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Low entropy value (3.7 bits) \u2014 may be placeholder or common string", "evidence": {"match": "Password = \"<redacted>\"", "reason": "Low entropy value (3.7 bits) \u2014 may be placeholder or common string", "rule_id": "SEC001", "scanner": "repobility-threat-engine", "confidence": 0.3, "correlation_key": "secret|token|1|password redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2database/TestServer.java"}, "region": {"startLine": 13}}}]}, {"ruleId": "SEC089", "level": "warning", "message": {"text": "[SEC089] Go: bind to all interfaces (0.0.0.0): Server binds to all network interfaces \u2014 exposes service beyond intended scope. Ported from gosec G102 (Apache-2.0)."}, "properties": {"repobilityId": 97174, "scanner": "repobility-threat-engine", "fingerprint": "5301dd2beeafc21fdfbd423b23b98525363049076c50fa34fce06d9c794ac885", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".Listen(\"tcp\", \":50051\"", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC089", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|5301dd2beeafc21fdfbd423b23b98525363049076c50fa34fce06d9c794ac885"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-go/fuzz_hello.go"}, "region": {"startLine": 27}}}]}, {"ruleId": "SEC003", "level": "warning", "message": {"text": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code."}, "properties": {"repobilityId": 97168, "scanner": "repobility-threat-engine", "fingerprint": "2cf54c224255bc9a2821bc5de1434372149e996bb32898043bbc85a6343d94dd", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Low entropy value (3.1 bits) \u2014 may be placeholder or common string", "evidence": {"match": "secret_key = \"fuzz test key\"", "reason": "Low entropy value (3.1 bits) \u2014 may be placeholder or common string", "rule_id": "SEC003", "scanner": "repobility-threat-engine", "confidence": 0.3, "correlation_key": "secret|projects/flask/fuzz_json.py|2|secret_key fuzz test key"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/fuzz_json.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "SEC094", "level": "warning", "message": {"text": "[SEC094] Go: world-writable file permissions: File or directory created with world-writable mode (e.g. 0666, 0777). Ported from gosec G301 / G302 / G306 (Apache-2.0)."}, "properties": {"repobilityId": 97166, "scanner": "repobility-threat-engine", "fingerprint": "93d18a24f1a1fd34590bd57c43bb00a42bc7c95b940955fcf683fc4c354aa408", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "os.WriteFile(\"demoTar.tar\", data, 0666", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC094", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|93d18a24f1a1fd34590bd57c43bb00a42bc7c95b940955fcf683fc4c354aa408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fabric/persistence_fuzzer.go"}, "region": {"startLine": 36}}}]}, {"ruleId": "ERR002", "level": "warning", "message": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "properties": {"repobilityId": 97134, "scanner": "repobility-threat-engine", "fingerprint": "5e98a5d933f54b0742c393155fa7b54d9d5b594681a3d9eba54e9c0fff60f3c8", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "catch(function () {}", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR002", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|5e98a5d933f54b0742c393155fa7b54d9d5b594681a3d9eba54e9c0fff60f3c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/node-xml2js/fuzz_parseString.js"}, "region": {"startLine": 50}}}]}, {"ruleId": "ERR002", "level": "warning", "message": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "properties": {"repobilityId": 97133, "scanner": "repobility-threat-engine", "fingerprint": "0e4be1b9dfa8227ee47b9397a7cad9131d5fc7d915cd81cdbe1a3688b79672f9", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "catch (error) {\n    }", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR002", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|0e4be1b9dfa8227ee47b9397a7cad9131d5fc7d915cd81cdbe1a3688b79672f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/compiler/fuzz_tests/fuzz_parser.js"}, "region": {"startLine": 59}}}]}, {"ruleId": "ERR002", "level": "warning", "message": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "properties": {"repobilityId": 97132, "scanner": "repobility-threat-engine", "fingerprint": "4dbcba641a9555e249356619771798d9bcdf0f071a5054b241ff342be523a5f6", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "catch (error) {\n    }", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR002", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|4dbcba641a9555e249356619771798d9bcdf0f071a5054b241ff342be523a5f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/compiler/fuzz_tests/fuzz_parse_template.js"}, "region": {"startLine": 27}}}]}, {"ruleId": "SEC127", "level": "warning", "message": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or silently no-ops. AI agents consistently emit these when their context window runs out mid-implementation. Production callers hitting these stubs is a classic AI-generated-incident."}, "properties": {"repobilityId": 97117, "scanner": "repobility-threat-engine", "fingerprint": "fc7730a197d028a54a9213d9075474374e33917801a72a63b22bc76cfd201ea1", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "def quit_on_bug_found(self):\n    raise NotImplementedError", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC127", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|fc7730a197d028a54a9213d9075474374e33917801a72a63b22bc76cfd201ea1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers.py"}, "region": {"startLine": 223}}}]}, {"ruleId": "SEC005", "level": "warning", "message": {"text": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input."}, "properties": {"repobilityId": 97100, "scanner": "repobility-threat-engine", "fingerprint": "ec4c32175fb2780b7a637d236df5482465efa151247a45a28b103a05b5f49b77", "category": "injection", "severity": "medium", "confidence": 0.5, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "shell=True detected \u2014 verify command source is not user-controllable", "evidence": {"match": "subprocess.check_call(\n          'diff /tmp/chronos-before.diff /tmp/chronos-after.diff > /tmp/chron", "reason": "shell=True detected \u2014 verify command source is not user-controllable", "rule_id": "SEC005", "scanner": "repobility-threat-engine", "confidence": 0.5, "correlation_key": "code|injection|token|300|sec005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/integrity_validator_run_tests.py"}, "region": {"startLine": 300}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 97085, "scanner": "repobility-threat-engine", "fingerprint": "d469ea7a0aa4060a24faf22bfc9b0d3b73cdd66f5994eff23cbeb0fe3ed5fea8", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except:\n        pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d469ea7a0aa4060a24faf22bfc9b0d3b73cdd66f5994eff23cbeb0fe3ed5fea8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_query_parser.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 97084, "scanner": "repobility-threat-engine", "fingerprint": "827661a488bb620200d2c753bb110caae1cdab33503fb7afd0ab14b5983d2cb1", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n          pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|827661a488bb620200d2c753bb110caae1cdab33503fb7afd0ab14b5983d2cb1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/integrity_validator_check_replay.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 97083, "scanner": "repobility-threat-engine", "fingerprint": "a8dec5b9f02b14a9a36e8e9f97f64fbf6e58c7a15b00d24af7cbcbe00d87e793", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n  pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a8dec5b9f02b14a9a36e8e9f97f64fbf6e58c7a15b00d24af7cbcbe00d87e793"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/sanitizers/pysecsan/pysecsan/yaml_deserialization.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "SEC012", "level": "warning", "message": {"text": "[SEC012] ZipSlip \u2014 Archive Path Traversal: Archive extraction without path validation allows writing files outside the target directory."}, "properties": {"repobilityId": 97078, "scanner": "repobility-threat-engine", "fingerprint": "779bdf40587864c3cdd168f6a176e35b9ef5ee814be510eb89d6106fc04f349c", "category": "path_traversal", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".extractall(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC012", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|path_traversal|infra/cifuzz/http_utils.py|59|sec012"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/http_utils.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "SEC012", "level": "warning", "message": {"text": "[SEC012] ZipSlip \u2014 Archive Path Traversal: Archive extraction without path validation allows writing files outside the target directory."}, "properties": {"repobilityId": 97077, "scanner": "repobility-threat-engine", "fingerprint": "57d071398ef72d7609028eb73e44114f403cf42b4a23595c4b105101148e23fd", "category": "path_traversal", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".extractall(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC012", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|path_traversal|token|133|sec012"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/github_actions/__init__.py"}, "region": {"startLine": 133}}}]}, {"ruleId": "SEC012", "level": "warning", "message": {"text": "[SEC012] ZipSlip \u2014 Archive Path Traversal: Archive extraction without path validation allows writing files outside the target directory."}, "properties": {"repobilityId": 97076, "scanner": "repobility-threat-engine", "fingerprint": "335a7b5cc64499e2579f165bd5bcb846e8aa1114b2d7fe947e116de8cb2d73d0", "category": "path_traversal", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".extractall(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC012", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|path_traversal|token|64|sec012"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/python_coverage_helper.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "SEC119", "level": "warning", "message": {"text": "[SEC119] World-writable / world-readable file permissions: World-writable files let any local user (or container neighbor) tamper with data; world-readable files leak secrets."}, "properties": {"repobilityId": 97071, "scanner": "repobility-threat-engine", "fingerprint": "ec44569791727d7d4cfa28a05ab981b2e9fb92d2a399370c1c9ba644c8a71883", "category": "security", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "os.chmod(script_path, 0o755)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC119", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|security|token|59|sec119"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/make_build_replayable.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "COMP001", "level": "warning", "message": {"text": "[COMP001] High cognitive complexity: Function `parse_clang_record_command_line_value` has cognitive complexity 17 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: break=1, case=4, if=3, match=1, nested_bonus=7, while=1."}, "properties": {"repobilityId": 97054, "scanner": "repobility-threat-engine", "fingerprint": "56abbf0821e368c41d0bd82829ff73c86f99b82f122f2b4a9670dabc3a0ff2ae", "category": "quality", "severity": "medium", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 17 (severity threshold for medium: 15+).", "evidence": {"scanner": "repobility-threat-engine", "function": "parse_clang_record_command_line_value", "breakdown": {"if": 3, "case": 4, "break": 1, "match": 1, "while": 1, "nested_bonus": 7}, "complexity": 17, "correlation_key": "fp|56abbf0821e368c41d0bd82829ff73c86f99b82f122f2b4a9670dabc3a0ff2ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/indexer/dwarf_info.py"}, "region": {"startLine": 127}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101288, "scanner": "repobility-docker", "fingerprint": "9321bc0e9dcc0d50887bac4082cc0d4118f14455dd050f222980b43142e72123", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9321bc0e9dcc0d50887bac4082cc0d4118f14455dd050f222980b43142e72123"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zt-zip/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101287, "scanner": "repobility-docker", "fingerprint": "1c0b9d8966d76682d7052172006a245dbbb1b6217dbcbfb7c40d5a4322a3774b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c0b9d8966d76682d7052172006a245dbbb1b6217dbcbfb7c40d5a4322a3774b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zt-zip/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101282, "scanner": "repobility-docker", "fingerprint": "ffbaa44797ac962e276f994c28bc14ccdd71e9994dc8facf809de49190e852d4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ffbaa44797ac962e276f994c28bc14ccdd71e9994dc8facf809de49190e852d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101281, "scanner": "repobility-docker", "fingerprint": "22511c7175fa3dd620532fe244cd7280588de42b6f62af80fca76f5e19f411c6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|22511c7175fa3dd620532fe244cd7280588de42b6f62af80fca76f5e19f411c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zstd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101278, "scanner": "repobility-docker", "fingerprint": "13e6d16a1482cf0450cc504fe9da7b1fd23d9675112651636330100e83c54e35", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|13e6d16a1482cf0450cc504fe9da7b1fd23d9675112651636330100e83c54e35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zopfli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101277, "scanner": "repobility-docker", "fingerprint": "aa09cfe1f545f0b44f56edba5a96b3952603456628d40915d731656466422866", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aa09cfe1f545f0b44f56edba5a96b3952603456628d40915d731656466422866"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zopfli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101274, "scanner": "repobility-docker", "fingerprint": "0a2a5fd5aa2f146ce868032ca648b4b37401e0d5d7a55fdd78930020b879e6ad", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0a2a5fd5aa2f146ce868032ca648b4b37401e0d5d7a55fdd78930020b879e6ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zookeeper/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101273, "scanner": "repobility-docker", "fingerprint": "3891daaf0a3f918be88ef05b5a463fb9ae262326d2fb6beb4d553c036d1c9548", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3891daaf0a3f918be88ef05b5a463fb9ae262326d2fb6beb4d553c036d1c9548"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zookeeper/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101270, "scanner": "repobility-docker", "fingerprint": "12a87577de46d0142711d87fdc5edf4035cf9deb265ce297bee5b135a993cb3a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12a87577de46d0142711d87fdc5edf4035cf9deb265ce297bee5b135a993cb3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/znc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101269, "scanner": "repobility-docker", "fingerprint": "c15d8b8dd23051b062c4ce4bcec9817a626ed03d258f368c4a4bc213bccc3f99", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c15d8b8dd23051b062c4ce4bcec9817a626ed03d258f368c4a4bc213bccc3f99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/znc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101266, "scanner": "repobility-docker", "fingerprint": "eac053b9628986397b4f52ebe09f45f4bff76cdcbb1d6d448e7e5624680ff799", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eac053b9628986397b4f52ebe09f45f4bff76cdcbb1d6d448e7e5624680ff799"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib-ng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101265, "scanner": "repobility-docker", "fingerprint": "07e8455df5b6fc66ba105bbf121c855cb83045d142344c7619b67f89c03ef16a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|07e8455df5b6fc66ba105bbf121c855cb83045d142344c7619b67f89c03ef16a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib-ng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101262, "scanner": "repobility-docker", "fingerprint": "191fc79e9da4b19077d1990637fe1f3edc45669c5d6b578236eb7647d22938c4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|191fc79e9da4b19077d1990637fe1f3edc45669c5d6b578236eb7647d22938c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101261, "scanner": "repobility-docker", "fingerprint": "c148072827967e4e6e51aa07d5568c9e3bd8f2530bdfb20a23cac1d2a2bd5ad5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c148072827967e4e6e51aa07d5568c9e3bd8f2530bdfb20a23cac1d2a2bd5ad5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101259, "scanner": "repobility-docker", "fingerprint": "36ef0eeb8a656571ae906951c145567308b982281d7156a8b6074bbb4b2a795a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|36ef0eeb8a656571ae906951c145567308b982281d7156a8b6074bbb4b2a795a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zipp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101258, "scanner": "repobility-docker", "fingerprint": "445a267acc8436ccaa6b500b291217f23ccd0c6f0f3abc28bec8588ebd401d35", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|445a267acc8436ccaa6b500b291217f23ccd0c6f0f3abc28bec8588ebd401d35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zipp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101251, "scanner": "repobility-docker", "fingerprint": "f0bb7d77a87da7d6ab6ae8e45bc0dd35c3f44b754e5d64cfb494f3899e74d6da", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f0bb7d77a87da7d6ab6ae8e45bc0dd35c3f44b754e5d64cfb494f3899e74d6da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101250, "scanner": "repobility-docker", "fingerprint": "cfe5872719600b2a30a8b9c798083cc29f7241a952b513b59dd3d387cbb0f3de", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cfe5872719600b2a30a8b9c798083cc29f7241a952b513b59dd3d387cbb0f3de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101246, "scanner": "repobility-docker", "fingerprint": "6d18cb66da8966cd67aa4375f49ed60226b435c29a2113e0078dd99629a1fb93", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d18cb66da8966cd67aa4375f49ed60226b435c29a2113e0078dd99629a1fb93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yyjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101245, "scanner": "repobility-docker", "fingerprint": "28b2302cbdbff9d2aeb87fc14ddc41bc0a71e09ee368128b6981a7307ca3ec7d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|28b2302cbdbff9d2aeb87fc14ddc41bc0a71e09ee368128b6981a7307ca3ec7d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yyjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101242, "scanner": "repobility-docker", "fingerprint": "63e9460811fa2b77e1f444d11b2771733e2fa63512da0b5d22118c5202657bab", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|63e9460811fa2b77e1f444d11b2771733e2fa63512da0b5d22118c5202657bab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yoga/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101241, "scanner": "repobility-docker", "fingerprint": "583279f8e853ffb91fa4b334028c477ea9f2f5f0ea1c94628477c927a658e72b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|583279f8e853ffb91fa4b334028c477ea9f2f5f0ea1c94628477c927a658e72b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yoga/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101234, "scanner": "repobility-docker", "fingerprint": "8dc8fdc82d93cf6fe576341ef8db505ddbab7dde80b695b5c663e14da8cbdac8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8dc8fdc82d93cf6fe576341ef8db505ddbab7dde80b695b5c663e14da8cbdac8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yara/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101233, "scanner": "repobility-docker", "fingerprint": "f7ef5be244102b0637f2b4cb2ed9b3cb0798af523ea2f1389c8b647b6ce2f7c9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f7ef5be244102b0637f2b4cb2ed9b3cb0798af523ea2f1389c8b647b6ce2f7c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yara/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101230, "scanner": "repobility-docker", "fingerprint": "0e8cfcc1a58f2aae6a2e13a7de5323db4ac3376ed195266bd681a282968616ff", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e8cfcc1a58f2aae6a2e13a7de5323db4ac3376ed195266bd681a282968616ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yamlbeans/Dockerfile"}, "region": {"startLine": 35}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101229, "scanner": "repobility-docker", "fingerprint": "88d1543ad9ea27561643ac4fbff367a66be434eb40018587b6423a882607a6af", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|88d1543ad9ea27561643ac4fbff367a66be434eb40018587b6423a882607a6af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yamlbeans/Dockerfile"}, "region": {"startLine": 35}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101226, "scanner": "repobility-docker", "fingerprint": "615298f7a4601ca9c373fc8cc2a2640266e529c93415483a3e12d3f56eabae9b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|615298f7a4601ca9c373fc8cc2a2640266e529c93415483a3e12d3f56eabae9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yaml-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101225, "scanner": "repobility-docker", "fingerprint": "bdc0ea2c4d1545c77e1adcd159c46ea51fc65d3899eabae68222b30c28496bb3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bdc0ea2c4d1545c77e1adcd159c46ea51fc65d3899eabae68222b30c28496bb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/yaml-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101220, "scanner": "repobility-docker", "fingerprint": "2084de39412b0c143fc18571f4fdd2109bac84087aea5b716b1fac717edbb93b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2084de39412b0c143fc18571f4fdd2109bac84087aea5b716b1fac717edbb93b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101219, "scanner": "repobility-docker", "fingerprint": "1f2f013f67cdfd90d183e51185273bcdf41b9c28838f830290bd21219848d4b5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1f2f013f67cdfd90d183e51185273bcdf41b9c28838f830290bd21219848d4b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101216, "scanner": "repobility-docker", "fingerprint": "a7eef0757802c5a35f4d5f5bc659982d3f658ba931f6c9a136c2d2384eb133a1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7eef0757802c5a35f4d5f5bc659982d3f658ba931f6c9a136c2d2384eb133a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101215, "scanner": "repobility-docker", "fingerprint": "197b50dd2f526125a283d360092126b1b5b25d849cf5ffbb17edd5dee4a2daa6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|197b50dd2f526125a283d360092126b1b5b25d849cf5ffbb17edd5dee4a2daa6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101212, "scanner": "repobility-docker", "fingerprint": "87203efdbeaba92c288cb9aab4a9066aac52a8a8cb49d4ffd948d5738e6f4e22", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87203efdbeaba92c288cb9aab4a9066aac52a8a8cb49d4ffd948d5738e6f4e22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xvid/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101211, "scanner": "repobility-docker", "fingerprint": "f9f4db5f35c1e4d7d5310661ee1c3091f605dd5dd92b9de4fa56229d194eb529", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f9f4db5f35c1e4d7d5310661ee1c3091f605dd5dd92b9de4fa56229d194eb529"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xvid/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101206, "scanner": "repobility-docker", "fingerprint": "dc2cc88f8cd4244e1cbb04de610c49600c980cc0fb0f4a76b39588796a9f85c9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dc2cc88f8cd4244e1cbb04de610c49600c980cc0fb0f4a76b39588796a9f85c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xs/Dockerfile"}, "region": {"startLine": 31}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101205, "scanner": "repobility-docker", "fingerprint": "50cba691efbe688d2ae9b008aeb8a6490a34c0db2e49dc07aff1576efa30ed3a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|50cba691efbe688d2ae9b008aeb8a6490a34c0db2e49dc07aff1576efa30ed3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xs/Dockerfile"}, "region": {"startLine": 31}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101199, "scanner": "repobility-docker", "fingerprint": "033b98fcd8c5f73db334d51d2ae6fad672ba5dfc710c1ec9685741205d8e522e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|033b98fcd8c5f73db334d51d2ae6fad672ba5dfc710c1ec9685741205d8e522e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnu/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101198, "scanner": "repobility-docker", "fingerprint": "c5e185facd43f2ff4861981f478d8ce27974789bd07272c0991813e757cf01f1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c5e185facd43f2ff4861981f478d8ce27974789bd07272c0991813e757cf01f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnu/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101195, "scanner": "repobility-docker", "fingerprint": "8cd777433bad5822cbcc5e91b89b382d421249949fc4272359dc02bd8827f678", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8cd777433bad5822cbcc5e91b89b382d421249949fc4272359dc02bd8827f678"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnnpack/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101194, "scanner": "repobility-docker", "fingerprint": "1c77e0919069ccb369479ed32c40de64914137e56d153910c7de9f66de8fabf0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c77e0919069ccb369479ed32c40de64914137e56d153910c7de9f66de8fabf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnnpack/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101191, "scanner": "repobility-docker", "fingerprint": "a87f52ffbfeb1eef6d0a9180edf0aa1ed35369eea03c398cc2629e717211f091", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a87f52ffbfeb1eef6d0a9180edf0aa1ed35369eea03c398cc2629e717211f091"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xnio-api/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101188, "scanner": "repobility-docker", "fingerprint": "ac697d981ef27613ca43864b194bb6071c18624638af0b4be00005de3bb8ac07", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ac697d981ef27613ca43864b194bb6071c18624638af0b4be00005de3bb8ac07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlunit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101187, "scanner": "repobility-docker", "fingerprint": "fd00730fd43afcc972b9635557023e895a4eac9e9bf49440e72fcf0403c79f50", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fd00730fd43afcc972b9635557023e895a4eac9e9bf49440e72fcf0403c79f50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlunit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101182, "scanner": "repobility-docker", "fingerprint": "3df37f99b8f5918d33a185fd3f14e1bfaefce18f1fac36c97b960dc613c95fbf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3df37f99b8f5918d33a185fd3f14e1bfaefce18f1fac36c97b960dc613c95fbf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlsec/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101181, "scanner": "repobility-docker", "fingerprint": "2ccd1c47d3d123fcfa68c4063141d7e6aa5f7d6a784012cd67ee9e287f1c32c4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ccd1c47d3d123fcfa68c4063141d7e6aa5f7d6a784012cd67ee9e287f1c32c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlsec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101180, "scanner": "repobility-docker", "fingerprint": "3f7a89383f1d50253b8d890a348cb3fa676bb9fc9da21e8c2751607e1ee0c54f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3f7a89383f1d50253b8d890a348cb3fa676bb9fc9da21e8c2751607e1ee0c54f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlsec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101174, "scanner": "repobility-docker", "fingerprint": "7351aced6241187e56e57d8e85e532c62076d9ab9ab1e0e62253c19fb5569158", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7351aced6241187e56e57d8e85e532c62076d9ab9ab1e0e62253c19fb5569158"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlbeans/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101173, "scanner": "repobility-docker", "fingerprint": "3c1568d5abb2ba1ffa15f8b8c53fba24a536aeaf2fe4eced14872bbafc81624b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3c1568d5abb2ba1ffa15f8b8c53fba24a536aeaf2fe4eced14872bbafc81624b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xmlbeans/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101166, "scanner": "repobility-docker", "fingerprint": "904c745f35f4a439af89431f4d2f8a696d7338689f05c0869bb8aab605b987bd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|904c745f35f4a439af89431f4d2f8a696d7338689f05c0869bb8aab605b987bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces-c/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101165, "scanner": "repobility-docker", "fingerprint": "73acef9b098f5a4b650c3ea7a681cd5365c932694017434b644f4c5786b982c8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|73acef9b098f5a4b650c3ea7a681cd5365c932694017434b644f4c5786b982c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces-c/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101162, "scanner": "repobility-docker", "fingerprint": "3c146ce01d3167a0c6db1b2a63e0278296b037bfabdd8cee9c217051ef276f91", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c146ce01d3167a0c6db1b2a63e0278296b037bfabdd8cee9c217051ef276f91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101161, "scanner": "repobility-docker", "fingerprint": "59aa7d1e01fe21d84737312479b08d24dfdedd0e804258bf77a23c605c499816", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|59aa7d1e01fe21d84737312479b08d24dfdedd0e804258bf77a23c605c499816"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xerces/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101155, "scanner": "repobility-docker", "fingerprint": "7079e9e22423d3be9f04cda0439adcc75e07c191b98371183f6afb7378f1b7ba", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7079e9e22423d3be9f04cda0439adcc75e07c191b98371183f6afb7378f1b7ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wxwidgets/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101154, "scanner": "repobility-docker", "fingerprint": "342acc4b8a88e5eedb10e6799578e986dc815b780da8bad1b90f1c93ff4808cf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|342acc4b8a88e5eedb10e6799578e986dc815b780da8bad1b90f1c93ff4808cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wxwidgets/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101151, "scanner": "repobility-docker", "fingerprint": "aafa304b2ffe0831495d0d520d6420cf55705c9b2e3aac67a44ee7bbfdde3c3b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aafa304b2ffe0831495d0d520d6420cf55705c9b2e3aac67a44ee7bbfdde3c3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wuffs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101150, "scanner": "repobility-docker", "fingerprint": "d2229a088d3ec62ccd47e88b113efedfe23b7cc47e7936a8a43e3e1a4972dc4c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d2229a088d3ec62ccd47e88b113efedfe23b7cc47e7936a8a43e3e1a4972dc4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wuffs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101145, "scanner": "repobility-docker", "fingerprint": "d7b4760899dc146d9e8b34b25ff6a79a1090fb98b07678318250f3387be44ae2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7b4760899dc146d9e8b34b25ff6a79a1090fb98b07678318250f3387be44ae2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101144, "scanner": "repobility-docker", "fingerprint": "aee1891959a359d78e0902c7786088b74cd4a19caf5d7c2860b92c65ba8756cc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aee1891959a359d78e0902c7786088b74cd4a19caf5d7c2860b92c65ba8756cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wt/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101137, "scanner": "repobility-docker", "fingerprint": "a57f1da04fa342cd80b4366e81f39ed1734d2113fabab639c8fc327e3b87b01e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a57f1da04fa342cd80b4366e81f39ed1734d2113fabab639c8fc327e3b87b01e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolftpm/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101135, "scanner": "repobility-docker", "fingerprint": "e4eda12f9791f5473e35e49b63e29f0a407da59b2752cc3331d5db97d5e97b83", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4eda12f9791f5473e35e49b63e29f0a407da59b2752cc3331d5db97d5e97b83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101134, "scanner": "repobility-docker", "fingerprint": "61dd599d61727046025b1982b988df918bd4eb4d71ccb3e788f7056c1b21514d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|61dd599d61727046025b1982b988df918bd4eb4d71ccb3e788f7056c1b21514d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101131, "scanner": "repobility-docker", "fingerprint": "04b42bfed3ed82bf00b4a73723b28ef72f126a3897f0c154a48f74b4ce4ddf1f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|04b42bfed3ed82bf00b4a73723b28ef72f126a3897f0c154a48f74b4ce4ddf1f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssh/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101130, "scanner": "repobility-docker", "fingerprint": "b6ea643d227094ab3dfe7953947acb06c34d86ebb78ba33b4067a976a91f4d02", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b6ea643d227094ab3dfe7953947acb06c34d86ebb78ba33b4067a976a91f4d02"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfssh/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101128, "scanner": "repobility-docker", "fingerprint": "4cb2a55938b872228f06d2273034c33f4aa6487a9cdefcb2d295db077f2c7fdf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4cb2a55938b872228f06d2273034c33f4aa6487a9cdefcb2d295db077f2c7fdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfmqtt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101127, "scanner": "repobility-docker", "fingerprint": "725e5b2abc86964d409f937cb16667d08a7503c649c268456bd307c6af03d0b0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|725e5b2abc86964d409f937cb16667d08a7503c649c268456bd307c6af03d0b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfmqtt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101124, "scanner": "repobility-docker", "fingerprint": "f894e65e0d13f72f732928f8cc2d8ffdc3d9a2b40896b8ca2d7812297b246e14", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f894e65e0d13f72f732928f8cc2d8ffdc3d9a2b40896b8ca2d7812297b246e14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfboot/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101123, "scanner": "repobility-docker", "fingerprint": "89b332749efdc8fc55c569bc6319cd55cb3e77fd7c8dc988b1b22d2ef1298b3d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|89b332749efdc8fc55c569bc6319cd55cb3e77fd7c8dc988b1b22d2ef1298b3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wolfboot/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101121, "scanner": "repobility-docker", "fingerprint": "fb495b3b6ad7457b756ec6c1ddf4e3f178ad4c8ef0d3c5c1edd5992c4238e218", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb495b3b6ad7457b756ec6c1ddf4e3f178ad4c8ef0d3c5c1edd5992c4238e218"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woff2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101120, "scanner": "repobility-docker", "fingerprint": "9fd49c6891a21f0af5f6994eb80947b26b4f2fea6cb3e8cbad3962ceee7b71c5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9fd49c6891a21f0af5f6994eb80947b26b4f2fea6cb3e8cbad3962ceee7b71c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/woff2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101117, "scanner": "repobility-docker", "fingerprint": "12ee229c20884d898550376e3b39e504c90128c1ddfed345727517ac0b4426d7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12ee229c20884d898550376e3b39e504c90128c1ddfed345727517ac0b4426d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wireshark/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101116, "scanner": "repobility-docker", "fingerprint": "02a2485f663c20e11fb6444dfaebc0666e7d5c5ae2f1c79ecd14fefa40901d08", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|02a2485f663c20e11fb6444dfaebc0666e7d5c5ae2f1c79ecd14fefa40901d08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wireshark/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101112, "scanner": "repobility-docker", "fingerprint": "3a71262c5a50365a603657ccc83ac188eeb2fd132d2db67f842de1af43773e1a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a71262c5a50365a603657ccc83ac188eeb2fd132d2db67f842de1af43773e1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101111, "scanner": "repobility-docker", "fingerprint": "e3cd5749f759980b358b2788884788cd9e2a4b4bc1417b0c0026fe6897a157cf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e3cd5749f759980b358b2788884788cd9e2a4b4bc1417b0c0026fe6897a157cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101108, "scanner": "repobility-docker", "fingerprint": "5372b231f11d76ced3913b699b96c266e9d69362ab561f63b91988505bc28f46", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5372b231f11d76ced3913b699b96c266e9d69362ab561f63b91988505bc28f46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101107, "scanner": "repobility-docker", "fingerprint": "aafe04e1c700dd39511d58b6ea845c577a1c7f0dd67222887f14f95e176f921b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aafe04e1c700dd39511d58b6ea845c577a1c7f0dd67222887f14f95e176f921b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wget/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101103, "scanner": "repobility-docker", "fingerprint": "b8297576c32788299371c96945d0fed495dc9fd9df6c9e6d51d63430526dad53", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b8297576c32788299371c96945d0fed495dc9fd9df6c9e6d51d63430526dad53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websocket-client/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101102, "scanner": "repobility-docker", "fingerprint": "479c2dd1e96601b646dd69bb117c43e7e75d95012247bd464ed58d7b6457e9b4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|479c2dd1e96601b646dd69bb117c43e7e75d95012247bd464ed58d7b6457e9b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/websocket-client/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101099, "scanner": "repobility-docker", "fingerprint": "92c792f21b4d23cec59d51e9eb71b0d33780ce57898c43f751a54fdf5d615067", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92c792f21b4d23cec59d51e9eb71b0d33780ce57898c43f751a54fdf5d615067"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wazuh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101098, "scanner": "repobility-docker", "fingerprint": "568f542573efd7651f067fc3d1768810495820899f3de9eca3fb66fd73f7065f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|568f542573efd7651f067fc3d1768810495820899f3de9eca3fb66fd73f7065f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wazuh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101095, "scanner": "repobility-docker", "fingerprint": "647600f383349e32d83617f4d91e9a0f1f9733927e05741e8d61e108612c3987", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|647600f383349e32d83617f4d91e9a0f1f9733927e05741e8d61e108612c3987"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wavpack/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101094, "scanner": "repobility-docker", "fingerprint": "c4bb561091710b18d00ff92d5fc6cb8b3656c0f5347852c2299da9dcec4b4225", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c4bb561091710b18d00ff92d5fc6cb8b3656c0f5347852c2299da9dcec4b4225"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wavpack/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101091, "scanner": "repobility-docker", "fingerprint": "de4cd8c5c7f1230bae65f7b9abe65d746747d5239ba78eaa9b461b84c9490eb7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de4cd8c5c7f1230bae65f7b9abe65d746747d5239ba78eaa9b461b84c9490eb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmtime/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101090, "scanner": "repobility-docker", "fingerprint": "179d29ad2be55b794cf85912d7f3431467c39d40b37e9de0fb86d6f5f70ba3f1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|179d29ad2be55b794cf85912d7f3431467c39d40b37e9de0fb86d6f5f70ba3f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmtime/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101085, "scanner": "repobility-docker", "fingerprint": "1e72e9386ca32c552ca41b8f4a57570b0d91688ced00603f752904a1e170d59c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e72e9386ca32c552ca41b8f4a57570b0d91688ced00603f752904a1e170d59c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101084, "scanner": "repobility-docker", "fingerprint": "0471360e64f3038b6c96864e9de4bb5e7adc301b4575647510197be28152932d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0471360e64f3038b6c96864e9de4bb5e7adc301b4575647510197be28152932d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101080, "scanner": "repobility-docker", "fingerprint": "c80dc3c5339f7f48bd279605612d97c7891989c5b16f13e0c8396fc1ad47b662", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c80dc3c5339f7f48bd279605612d97c7891989c5b16f13e0c8396fc1ad47b662"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101079, "scanner": "repobility-docker", "fingerprint": "a00f5ffcd02f457436476742f1b755a64c367e3e04524cc38a0539657843dbeb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a00f5ffcd02f457436476742f1b755a64c367e3e04524cc38a0539657843dbeb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasmedge/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101076, "scanner": "repobility-docker", "fingerprint": "5d0bdaa167e976c5d15fdb8c7c2b277b419bbf9382deec5d544af4d5b726a5f3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d0bdaa167e976c5d15fdb8c7c2b277b419bbf9382deec5d544af4d5b726a5f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasm3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101075, "scanner": "repobility-docker", "fingerprint": "7da2015b1087b7cf5e3475a83aea7947d8be015f00d6e078baf55dbebd6b04a1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7da2015b1087b7cf5e3475a83aea7947d8be015f00d6e078baf55dbebd6b04a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wasm3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101072, "scanner": "repobility-docker", "fingerprint": "573b61d72c136361ca4eff2f35bca407ba115290ad5f74bddfa5839744365568", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|573b61d72c136361ca4eff2f35bca407ba115290ad5f74bddfa5839744365568"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wamr/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101071, "scanner": "repobility-docker", "fingerprint": "840cc567a943df235a9d6d53f2147c970a7065ce13f4fd4926ebcc7aa7904b5b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|840cc567a943df235a9d6d53f2147c970a7065ce13f4fd4926ebcc7aa7904b5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wamr/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101068, "scanner": "repobility-docker", "fingerprint": "fb5bcb70c2890d5101e16ce2620a2d9a873b7cff27587b54c0253b5de1042b21", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fb5bcb70c2890d5101e16ce2620a2d9a873b7cff27587b54c0253b5de1042b21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wabt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101067, "scanner": "repobility-docker", "fingerprint": "82188be6335e7598f190b20ed7f59c5b89046b19b519af7973a6a8cef03f4160", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|82188be6335e7598f190b20ed7f59c5b89046b19b519af7973a6a8cef03f4160"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/wabt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101064, "scanner": "repobility-docker", "fingerprint": "a2b5abb370985ba0dfb6d08930b45ddd9053113ab322a2c7131ace02a64d2b71", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2b5abb370985ba0dfb6d08930b45ddd9053113ab322a2c7131ace02a64d2b71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3m/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101063, "scanner": "repobility-docker", "fingerprint": "51a6e9f3e1ee49233327fb56751d2c7ddfc6f3579dc3081331b42fa8f4f1af7b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|51a6e9f3e1ee49233327fb56751d2c7ddfc6f3579dc3081331b42fa8f4f1af7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/w3m/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101056, "scanner": "repobility-docker", "fingerprint": "80d9e8a6c16b75c2897101ee506ab504b0eb780cbd992604e74a4efde64c065f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|80d9e8a6c16b75c2897101ee506ab504b0eb780cbd992604e74a4efde64c065f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulkan-loader/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101055, "scanner": "repobility-docker", "fingerprint": "418d26d3a0028039d35d9ddb61f2f6f424d7b653e49f491b79bc1b2105c0ff94", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|418d26d3a0028039d35d9ddb61f2f6f424d7b653e49f491b79bc1b2105c0ff94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vulkan-loader/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101052, "scanner": "repobility-docker", "fingerprint": "b32f4df0409921f83b3658547d264e4b09ce1cc3ddb884351228e0862ecc9c31", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b32f4df0409921f83b3658547d264e4b09ce1cc3ddb884351228e0862ecc9c31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vtpm-td/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101051, "scanner": "repobility-docker", "fingerprint": "df9fc1ac2385bd4f55bc082cd48d8666f7d3ed5b41acf8ad1fdc8f76d70bfbae", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df9fc1ac2385bd4f55bc082cd48d8666f7d3ed5b41acf8ad1fdc8f76d70bfbae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vtpm-td/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 101048, "scanner": "repobility-docker", "fingerprint": "e3dfc3597acb239eabbea8d08065b55a7cdf1e2f1808ba3e05c90f9b03d8019c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e3dfc3597acb239eabbea8d08065b55a7cdf1e2f1808ba3e05c90f9b03d8019c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vorbis/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101047, "scanner": "repobility-docker", "fingerprint": "cac4974aef2b799541577942d58c30a8ed827c3621f6cbf8cd1f77018eb11554", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cac4974aef2b799541577942d58c30a8ed827c3621f6cbf8cd1f77018eb11554"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vorbis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101046, "scanner": "repobility-docker", "fingerprint": "0d5f69c28eb1e92f755a4ff014321ce482f029141395833b30b5c749dd2ca3d4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0d5f69c28eb1e92f755a4ff014321ce482f029141395833b30b5c749dd2ca3d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vorbis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101041, "scanner": "repobility-docker", "fingerprint": "072ecd140e9f683242e3ee2a24d44a8797bb725813e300aaa6f0bf2d42827544", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|072ecd140e9f683242e3ee2a24d44a8797bb725813e300aaa6f0bf2d42827544"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vlc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101040, "scanner": "repobility-docker", "fingerprint": "46fea56bce8b811c602a567f5a50f9e206e67541ece08df4ac93af54543b2d60", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|46fea56bce8b811c602a567f5a50f9e206e67541ece08df4ac93af54543b2d60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/vlc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101037, "scanner": "repobility-docker", "fingerprint": "2205a61a686a9eccf5ac79a36d7ee4843c7e1359d5c1e83cd610916952b40520", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2205a61a686a9eccf5ac79a36d7ee4843c7e1359d5c1e83cd610916952b40520"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/varnish/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101036, "scanner": "repobility-docker", "fingerprint": "ed09ca76da509f7554fa7206b589f21f234e16a9190b605dc09f81df77ea8467", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ed09ca76da509f7554fa7206b589f21f234e16a9190b605dc09f81df77ea8467"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/varnish/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101033, "scanner": "repobility-docker", "fingerprint": "111a5d41ed893d2d1211c089ba66b682024d36e5fe34457beb9b5ec31e6839df", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|111a5d41ed893d2d1211c089ba66b682024d36e5fe34457beb9b5ec31e6839df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/valijson/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101032, "scanner": "repobility-docker", "fingerprint": "428e8640381b2637a0c8a64dff646052ca564802e41fddd763b5d52e0b9f630e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|428e8640381b2637a0c8a64dff646052ca564802e41fddd763b5d52e0b9f630e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/valijson/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101027, "scanner": "repobility-docker", "fingerprint": "146b387c2cb4ad7d106c3f6212a8311ce9d74a4a85840dd542a29d706473db20", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|146b387c2cb4ad7d106c3f6212a8311ce9d74a4a85840dd542a29d706473db20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/v8/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101022, "scanner": "repobility-docker", "fingerprint": "39fa41ada6e2201af4468fe8a4ff5733472d2728e466fd6b85d3ddd360034aeb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|39fa41ada6e2201af4468fe8a4ff5733472d2728e466fd6b85d3ddd360034aeb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/util-linux/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101021, "scanner": "repobility-docker", "fingerprint": "50fa392cb1fc173253dee3d832d6741444634aebb9276dce3db809c74a45a059", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|50fa392cb1fc173253dee3d832d6741444634aebb9276dce3db809c74a45a059"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/util-linux/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101018, "scanner": "repobility-docker", "fingerprint": "aab7745c6091bd6c7759b2c52e191e654bb2bc274c6a90cd29a30763ec50e0fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aab7745c6091bd6c7759b2c52e191e654bb2bc274c6a90cd29a30763ec50e0fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8proc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101017, "scanner": "repobility-docker", "fingerprint": "500e6c0aa1ed402062b1fac641b020509baa669252b45390f231fa813cc0fb62", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|500e6c0aa1ed402062b1fac641b020509baa669252b45390f231fa813cc0fb62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/utf8proc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101012, "scanner": "repobility-docker", "fingerprint": "1e0e29998bf0639b381f94989e50dd36fff276f2fc2d10e8500debeecb0442ae", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1e0e29998bf0639b381f94989e50dd36fff276f2fc2d10e8500debeecb0442ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usrsctp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101011, "scanner": "repobility-docker", "fingerprint": "afebcac40a8128c2d5869fa168c3bd56d2e417613901715380c89c4e2a63b545", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|afebcac40a8128c2d5869fa168c3bd56d2e417613901715380c89c4e2a63b545"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usrsctp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101008, "scanner": "repobility-docker", "fingerprint": "67433b9f95b3370618ca620a1e9749575be37327dcd03ed37db3dbf4159d7f2c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|67433b9f95b3370618ca620a1e9749575be37327dcd03ed37db3dbf4159d7f2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101007, "scanner": "repobility-docker", "fingerprint": "79b1f2af062383103d00987f5e06ad3edc878b0f1854f3e0eef5e04e6be21c6b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|79b1f2af062383103d00987f5e06ad3edc878b0f1854f3e0eef5e04e6be21c6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101006, "scanner": "repobility-docker", "fingerprint": "b3d9c06f34009935c13b185d967725fc3e691978b006d45c8d7d99de7a86c773", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3d9c06f34009935c13b185d967725fc3e691978b006d45c8d7d99de7a86c773"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101005, "scanner": "repobility-docker", "fingerprint": "1d43701b4083bdfd4c36c8fd1ad3c493530296a9e6333bac38921dbf254d0d8c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1d43701b4083bdfd4c36c8fd1ad3c493530296a9e6333bac38921dbf254d0d8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101004, "scanner": "repobility-docker", "fingerprint": "ed82eb736e722b6b8328f2662b5a25fc8472620e09d779021a40291d8509c98e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed82eb736e722b6b8328f2662b5a25fc8472620e09d779021a40291d8509c98e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 101003, "scanner": "repobility-docker", "fingerprint": "e36180e0b4b312fa391238823b6a220f88e6a6ee8f1f61c759afd74ca7805484", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e36180e0b4b312fa391238823b6a220f88e6a6ee8f1f61c759afd74ca7805484"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/userver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 101000, "scanner": "repobility-docker", "fingerprint": "c2fa050bc1544571f6b0ced057a8cc6a2024abfa9e612d2cd6137f659879175b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2fa050bc1544571f6b0ced057a8cc6a2024abfa9e612d2cd6137f659879175b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usbguard/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100999, "scanner": "repobility-docker", "fingerprint": "48c853967923fde101e4788595eff9da103f49873620736733e2f63bc914d0b6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|48c853967923fde101e4788595eff9da103f49873620736733e2f63bc914d0b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/usbguard/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100990, "scanner": "repobility-docker", "fingerprint": "a91a380e6cc81083d629301ef37979e44a91297b93b14dcbfa8185f9e81f81cc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a91a380e6cc81083d629301ef37979e44a91297b93b14dcbfa8185f9e81f81cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uriparser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100989, "scanner": "repobility-docker", "fingerprint": "4a63e7bdccb7fee755d59fe55cc808af151cfff19a7ef8e90f8003f88e26835d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4a63e7bdccb7fee755d59fe55cc808af151cfff19a7ef8e90f8003f88e26835d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/uriparser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100986, "scanner": "repobility-docker", "fingerprint": "8d71610735c84520e39d4cc601fa9854a5f704c3e1bc91c0f296045f943b14cd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d71610735c84520e39d4cc601fa9854a5f704c3e1bc91c0f296045f943b14cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/upx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100985, "scanner": "repobility-docker", "fingerprint": "6df0e16b68f243d9e33db493a49953c32e362b82f3d013f09bed9a3a36b0cb63", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6df0e16b68f243d9e33db493a49953c32e362b82f3d013f09bed9a3a36b0cb63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/upx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100983, "scanner": "repobility-docker", "fingerprint": "ef890915543080c2c48f90bb9057325264fb30cd71954c75cafe0068b702d694", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef890915543080c2c48f90bb9057325264fb30cd71954c75cafe0068b702d694"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unsafe-libyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100982, "scanner": "repobility-docker", "fingerprint": "b370bca94a4ca603aa7d1e7f073f39c1b6138356d580a8c741eadf64ad5641a7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b370bca94a4ca603aa7d1e7f073f39c1b6138356d580a8c741eadf64ad5641a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unsafe-libyaml/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100979, "scanner": "repobility-docker", "fingerprint": "997dac9c54cca3f52a9fb10daaaf0bef5c3d90d227abc807ea2128f9777e2e2c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|997dac9c54cca3f52a9fb10daaaf0bef5c3d90d227abc807ea2128f9777e2e2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/univocity-parsers/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100978, "scanner": "repobility-docker", "fingerprint": "d676a7649aee023e79c8403bf6d71843af82995e7bcf8fc7f47f01a5cfe38375", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d676a7649aee023e79c8403bf6d71843af82995e7bcf8fc7f47f01a5cfe38375"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/univocity-parsers/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100971, "scanner": "repobility-docker", "fingerprint": "8a0f666b10f9bd44b3789e74ebd6c9cf9d1d922400dfb7c82c717e3028fa829a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a0f666b10f9bd44b3789e74ebd6c9cf9d1d922400dfb7c82c717e3028fa829a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unicorn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100970, "scanner": "repobility-docker", "fingerprint": "a2da18ce6df72343c15604a02def14d0451e708766e3a902b666cd77773b4d86", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a2da18ce6df72343c15604a02def14d0451e708766e3a902b666cd77773b4d86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unicorn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100964, "scanner": "repobility-docker", "fingerprint": "888a8d3d52f787cc07fbbdec9408c462fe326b0910fa751dd1d66f35ef2f8073", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|888a8d3d52f787cc07fbbdec9408c462fe326b0910fa751dd1d66f35ef2f8073"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/underscore/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100963, "scanner": "repobility-docker", "fingerprint": "7977bec41ead27579c14801fbf3dbfccb9cefc74fe43a0fbead089348b15ab2d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7977bec41ead27579c14801fbf3dbfccb9cefc74fe43a0fbead089348b15ab2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/underscore/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100960, "scanner": "repobility-docker", "fingerprint": "ba66c1202f742fb399e290a3a0acb5fe8257861b1e4b7de246fe58f41744f7e1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ba66c1202f742fb399e290a3a0acb5fe8257861b1e4b7de246fe58f41744f7e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unbound/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100959, "scanner": "repobility-docker", "fingerprint": "538e7de5d44595d0fec6689d2de3283e8a3bdd5f071072d29df7915165778fdf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|538e7de5d44595d0fec6689d2de3283e8a3bdd5f071072d29df7915165778fdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unbound/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100956, "scanner": "repobility-docker", "fingerprint": "4392da9ef9608ccb40a8d2fbddfea338e3336c02d45e245c1198b2518fa3417e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4392da9ef9608ccb40a8d2fbddfea338e3336c02d45e245c1198b2518fa3417e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100954, "scanner": "repobility-docker", "fingerprint": "0d62f4488057c1ebf619dc3786808383ae6435484d73277fe4bdbd3126a259f4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0d62f4488057c1ebf619dc3786808383ae6435484d73277fe4bdbd3126a259f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100953, "scanner": "repobility-docker", "fingerprint": "a353d59a01b08f564820a7fed924b05587ef83f11f651fff9a77e2272271c945", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a353d59a01b08f564820a7fed924b05587ef83f11f651fff9a77e2272271c945"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100952, "scanner": "repobility-docker", "fingerprint": "c93cc4c679b252425d9f58d0cbaf984fab351938c365edaa1f2a68567406a2ff", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c93cc4c679b252425d9f58d0cbaf984fab351938c365edaa1f2a68567406a2ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100941, "scanner": "repobility-docker", "fingerprint": "7675b87b699bd66833798ea930c4ac79fa03ec9f22e32beabb570a78e74aa546", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7675b87b699bd66833798ea930c4ac79fa03ec9f22e32beabb570a78e74aa546"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-boot/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100940, "scanner": "repobility-docker", "fingerprint": "b335030f3b2ea65369ba2eb1f4ee33af47c128f375d9d0496ae54d2427d6c687", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b335030f3b2ea65369ba2eb1f4ee33af47c128f375d9d0496ae54d2427d6c687"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/u-boot/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100915, "scanner": "repobility-docker", "fingerprint": "6202d7dedf18fe93d02e6c760e370b02a5f90add8b0cef4816d8ae9af29f7c80", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6202d7dedf18fe93d02e6c760e370b02a5f90add8b0cef4816d8ae9af29f7c80"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trust-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100914, "scanner": "repobility-docker", "fingerprint": "14849eb4933a063bcacb9b25670157704dd461ffec9a0abbcdd245ca8ced4a6b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|14849eb4933a063bcacb9b25670157704dd461ffec9a0abbcdd245ca8ced4a6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trust-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100911, "scanner": "repobility-docker", "fingerprint": "8ed316577dbd1c07264d595957b2ac54bab34264669f8561b698099fc1ce7c9c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ed316577dbd1c07264d595957b2ac54bab34264669f8561b698099fc1ce7c9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tremor/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100910, "scanner": "repobility-docker", "fingerprint": "93e779003ad3b45b2207e5395285656f8ea35cb46126d22ad1d3b0b3ca4a147d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|93e779003ad3b45b2207e5395285656f8ea35cb46126d22ad1d3b0b3ca4a147d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tremor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100909, "scanner": "repobility-docker", "fingerprint": "daa07d601c1242861f9eba997cdf05692d8b3a5a0fdc08c3f81cba496f2075b0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|daa07d601c1242861f9eba997cdf05692d8b3a5a0fdc08c3f81cba496f2075b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tremor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100906, "scanner": "repobility-docker", "fingerprint": "b4f4de2c0164c96673f27515611a460e08acaf92ab7c914eab5d778c348898f7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4f4de2c0164c96673f27515611a460e08acaf92ab7c914eab5d778c348898f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trafficserver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100905, "scanner": "repobility-docker", "fingerprint": "0fbede388f138119e894f80b14aa6855af552eb169e63792cef4d317de431cbb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0fbede388f138119e894f80b14aa6855af552eb169e63792cef4d317de431cbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/trafficserver/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100903, "scanner": "repobility-docker", "fingerprint": "a06899629b669cc8625093d53f5a7a6d76c028c97af59ec8faf81cd03127155d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a06899629b669cc8625093d53f5a7a6d76c028c97af59ec8faf81cd03127155d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tqdm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100902, "scanner": "repobility-docker", "fingerprint": "d8f7b5c62c5522d03ddfc2357f3be45159541bded4f0ad7855b090e6f32e7ea7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d8f7b5c62c5522d03ddfc2357f3be45159541bded4f0ad7855b090e6f32e7ea7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tqdm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100899, "scanner": "repobility-docker", "fingerprint": "7b5892f21ad55799ad87646a6b62a5442aea93f229e3fc047580ce5fdfef4bbc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b5892f21ad55799ad87646a6b62a5442aea93f229e3fc047580ce5fdfef4bbc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2-tss/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100898, "scanner": "repobility-docker", "fingerprint": "eaf8a47c77527aad353732f72621f586622aad7e97bd1d13199266e3f8fbee7c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eaf8a47c77527aad353732f72621f586622aad7e97bd1d13199266e3f8fbee7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2-tss/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100895, "scanner": "repobility-docker", "fingerprint": "3e058da409ecf64bea08a834cd92d1e36f8ec96b643bc0d798fa46207758f110", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e058da409ecf64bea08a834cd92d1e36f8ec96b643bc0d798fa46207758f110"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2/Dockerfile"}, "region": {"startLine": 8}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100894, "scanner": "repobility-docker", "fingerprint": "898314bf2b890493c2d5cbf30b08c6ab91eebe4ab3a98a5a4acf5a4b2ff6badc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|898314bf2b890493c2d5cbf30b08c6ab91eebe4ab3a98a5a4acf5a4b2ff6badc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tpm2/Dockerfile"}, "region": {"startLine": 8}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100891, "scanner": "repobility-docker", "fingerprint": "c208366ce026b8343c0e0e632abaecb3e7abc0adbcbb55ef8f31dd49736ac95d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c208366ce026b8343c0e0e632abaecb3e7abc0adbcbb55ef8f31dd49736ac95d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100890, "scanner": "repobility-docker", "fingerprint": "1901bd99b573d3729f9f3d04193432ea125e25e5734d01c872899720a5e1064c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1901bd99b573d3729f9f3d04193432ea125e25e5734d01c872899720a5e1064c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100883, "scanner": "repobility-docker", "fingerprint": "b071e812264ca4f7b3a1716ffe73c4ea331cdc4ceea95cae1f46d7ade226cb8c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b071e812264ca4f7b3a1716ffe73c4ea331cdc4ceea95cae1f46d7ade226cb8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlplusplus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100882, "scanner": "repobility-docker", "fingerprint": "a31b959fe266ead7352532f887b0c08f6d1306c09a2553e70bc9df2fd5410d9b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a31b959fe266ead7352532f887b0c08f6d1306c09a2553e70bc9df2fd5410d9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlplusplus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100877, "scanner": "repobility-docker", "fingerprint": "a63d543a2ddf96a1b909a3c1b52fad1d0437db13363b5dbbfce6b15c111ec7ea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a63d543a2ddf96a1b909a3c1b52fad1d0437db13363b5dbbfce6b15c111ec7ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toml_edit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100876, "scanner": "repobility-docker", "fingerprint": "e72d2463af701ed6fc4a3d85cdcd2155839bdd1c6e633f1767f802702c86c005", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e72d2463af701ed6fc4a3d85cdcd2155839bdd1c6e633f1767f802702c86c005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/toml_edit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100872, "scanner": "repobility-docker", "fingerprint": "73dc25aa8e91efa401acb5e584013be3ec50c6f353e9949b8e5f9cde82438611", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73dc25aa8e91efa401acb5e584013be3ec50c6f353e9949b8e5f9cde82438611"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomcat/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100871, "scanner": "repobility-docker", "fingerprint": "826eee437be6e1910fbae4c608a7edf75cc8668b4857a1aefffff5e2fc19824f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|826eee437be6e1910fbae4c608a7edf75cc8668b4857a1aefffff5e2fc19824f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomcat/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100866, "scanner": "repobility-docker", "fingerprint": "b0766f638dc04390ea19a88fccdbad434239662b492da2025be24391defa9709", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0766f638dc04390ea19a88fccdbad434239662b492da2025be24391defa9709"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tmux/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100865, "scanner": "repobility-docker", "fingerprint": "4b43f5d48c1f733fdfad11565409c2bce5f8bde22bbaccc6b313a725b6aa1004", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4b43f5d48c1f733fdfad11565409c2bce5f8bde22bbaccc6b313a725b6aa1004"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tmux/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100862, "scanner": "repobility-docker", "fingerprint": "3887bc657ce55d15bf5283f418b2484e8ddbf3cfafc16c8ec597be55347679e4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3887bc657ce55d15bf5283f418b2484e8ddbf3cfafc16c8ec597be55347679e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyxml2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100861, "scanner": "repobility-docker", "fingerprint": "c29daeb4fa96e513dd507a876c37898b00144d17a258205c00ec6614a6a0b8ea", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c29daeb4fa96e513dd507a876c37898b00144d17a258205c00ec6614a6a0b8ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyxml2/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100858, "scanner": "repobility-docker", "fingerprint": "69f8a0ee90af2cf189d2ddc8e9b6817039436fdd79bd66c591ee367e994e04ac", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|69f8a0ee90af2cf189d2ddc8e9b6817039436fdd79bd66c591ee367e994e04ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyusb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100857, "scanner": "repobility-docker", "fingerprint": "d8ebb1e28ea12ec248953986ed682d33a06a671da46c154f1e7ffd7b06397584", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d8ebb1e28ea12ec248953986ed682d33a06a671da46c154f1e7ffd7b06397584"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinyusb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100854, "scanner": "repobility-docker", "fingerprint": "410fb3fbe9f1e1f3948a91d6dd627d5cec81be5e8f08a25f85ada267f18b5e84", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|410fb3fbe9f1e1f3948a91d6dd627d5cec81be5e8f08a25f85ada267f18b5e84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinysparql/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100853, "scanner": "repobility-docker", "fingerprint": "e2e44cc922d489abf732a9abf62b269ede56cb8d21cdcafb33a6c5591508b08f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e2e44cc922d489abf732a9abf62b269ede56cb8d21cdcafb33a6c5591508b08f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tinysparql/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100844, "scanner": "repobility-docker", "fingerprint": "402b9c94a7fc84fb46f7903a654f8e8ce679a47b0e96ffe9748a891940205cf7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|402b9c94a7fc84fb46f7903a654f8e8ce679a47b0e96ffe9748a891940205cf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tink-cc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100843, "scanner": "repobility-docker", "fingerprint": "e54c932343b919c910fda131b9be4c9539b64fe95c5660e9b3ec9f1f695db5df", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e54c932343b919c910fda131b9be4c9539b64fe95c5660e9b3ec9f1f695db5df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tink-cc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100835, "scanner": "repobility-docker", "fingerprint": "73e678afb637ed2e9225e0d37c484b6c0d73c6af99ccb56fa6c9b5f31ad9b3d4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|73e678afb637ed2e9225e0d37c484b6c0d73c6af99ccb56fa6c9b5f31ad9b3d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tidy-html5/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100831, "scanner": "repobility-docker", "fingerprint": "fff6bb4d37d5f6a1a9d5adf9d89c6c2c1bb79ff602000771c2b92747af29ea2a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fff6bb4d37d5f6a1a9d5adf9d89c6c2c1bb79ff602000771c2b92747af29ea2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-rust/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100830, "scanner": "repobility-docker", "fingerprint": "cbf01eb7c404f8d66f2beb0260465ed0c19aceef299cecdb043cac24b0ea2825", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cbf01eb7c404f8d66f2beb0260465ed0c19aceef299cecdb043cac24b0ea2825"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-rust/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100827, "scanner": "repobility-docker", "fingerprint": "d64ddb789f0f673b455a285b00a3a44b47bd74f0f881e47274ef8a420861bcea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d64ddb789f0f673b455a285b00a3a44b47bd74f0f881e47274ef8a420861bcea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-py/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100826, "scanner": "repobility-docker", "fingerprint": "a5575f6589528f6e8ac1c1828766e656a76cf80f7f33da05f3784d6c4df40ec6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a5575f6589528f6e8ac1c1828766e656a76cf80f7f33da05f3784d6c4df40ec6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-py/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100823, "scanner": "repobility-docker", "fingerprint": "e3e1f8bf3b455cb77f45880de7e9d72110f1a7cd4cf007e74f5c05ef075adad6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e3e1f8bf3b455cb77f45880de7e9d72110f1a7cd4cf007e74f5c05ef075adad6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-js/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100822, "scanner": "repobility-docker", "fingerprint": "563698d1f68dc159ecf8b8e2c26ce6b6c926e435a97b30cd99920486fb082dc5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|563698d1f68dc159ecf8b8e2c26ce6b6c926e435a97b30cd99920486fb082dc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-js/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100819, "scanner": "repobility-docker", "fingerprint": "0da5fd1c19be12bd13a769315060c1bc07bd5dfb9015d567010dcb96ba0b84c6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0da5fd1c19be12bd13a769315060c1bc07bd5dfb9015d567010dcb96ba0b84c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100818, "scanner": "repobility-docker", "fingerprint": "d47c89203b35f4d9b053a4b5e26dc1ebf3f0378845d91c29920b356e3f9ea301", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d47c89203b35f4d9b053a4b5e26dc1ebf3f0378845d91c29920b356e3f9ea301"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100815, "scanner": "repobility-docker", "fingerprint": "e61a6fab9b7278540ce0083ce820401cf91d6f99fa391a0a81c7ce5a57bc0ec8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e61a6fab9b7278540ce0083ce820401cf91d6f99fa391a0a81c7ce5a57bc0ec8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-go/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100814, "scanner": "repobility-docker", "fingerprint": "16b6289a06757e740a880231aff20416851f72b4afaa89795fc5728b095332e4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|16b6289a06757e740a880231aff20416851f72b4afaa89795fc5728b095332e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-go/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100811, "scanner": "repobility-docker", "fingerprint": "9fbda4ccefef2f10fce4f430efe2e27d171e188f0f313440fed4974c10b82ce6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9fbda4ccefef2f10fce4f430efe2e27d171e188f0f313440fed4974c10b82ce6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100810, "scanner": "repobility-docker", "fingerprint": "f41cf3b398bb9acc2b8ba389da5b17c9a071723a647d1750e9fbf18cc67560dc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f41cf3b398bb9acc2b8ba389da5b17c9a071723a647d1750e9fbf18cc67560dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100807, "scanner": "repobility-docker", "fingerprint": "c7c0ad4d26ee722a0a6c039c21af4cfc517fa4c9171e7514d83607445a6f0dbf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c7c0ad4d26ee722a0a6c039c21af4cfc517fa4c9171e7514d83607445a6f0dbf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-c_glib/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100806, "scanner": "repobility-docker", "fingerprint": "df3a4c808ed25f37478361dd5beb233f9b7284c0ccd20e375f9966eb42cdf54e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df3a4c808ed25f37478361dd5beb233f9b7284c0ccd20e375f9966eb42cdf54e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/thrift-c_glib/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100797, "scanner": "repobility-docker", "fingerprint": "cbfc68308fbbcae9562d8c48a694c8aefeff12b94fd9bfdb0d78d00272584f33", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cbfc68308fbbcae9562d8c48a694c8aefeff12b94fd9bfdb0d78d00272584f33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tesseract-ocr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100796, "scanner": "repobility-docker", "fingerprint": "80c240a6457d9d295c81a81a98d768eb4e83441e64dd23ac7c71a72b52e3e299", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|80c240a6457d9d295c81a81a98d768eb4e83441e64dd23ac7c71a72b52e3e299"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tesseract-ocr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100793, "scanner": "repobility-docker", "fingerprint": "33c940ed755998a4004ecbb11f21e6b1ad2a08e2d7421478bb6b6a06784232f2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|33c940ed755998a4004ecbb11f21e6b1ad2a08e2d7421478bb6b6a06784232f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-serving/Dockerfile"}, "region": {"startLine": 32}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100792, "scanner": "repobility-docker", "fingerprint": "51d76277d658812a2086102caee2c4fd36ed5f553815f95e1a64a755dd76a374", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51d76277d658812a2086102caee2c4fd36ed5f553815f95e1a64a755dd76a374"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-serving/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100791, "scanner": "repobility-docker", "fingerprint": "1cbb3b586d06a13f4d8d8a19ba4f3eee3424bfecf974eaf7e179908b150cfd25", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1cbb3b586d06a13f4d8d8a19ba4f3eee3424bfecf974eaf7e179908b150cfd25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-serving/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100789, "scanner": "repobility-docker", "fingerprint": "8ad5a61b56e1e314255d8d7f3c302ccf4f76e86dfe7905855cb3df082dac6e5c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ad5a61b56e1e314255d8d7f3c302ccf4f76e86dfe7905855cb3df082dac6e5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-py/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100786, "scanner": "repobility-docker", "fingerprint": "9b23f9733c78ed97d84fd935c1274d5e1cc3459679d84105c9cefb9e47401d2a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9b23f9733c78ed97d84fd935c1274d5e1cc3459679d84105c9cefb9e47401d2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-addons/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100785, "scanner": "repobility-docker", "fingerprint": "d5a68c54b6913b2e93316e098d0a1ec18b89bd699840608e25dd0ccd4d527ca8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d5a68c54b6913b2e93316e098d0a1ec18b89bd699840608e25dd0ccd4d527ca8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow-addons/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100783, "scanner": "repobility-docker", "fingerprint": "4b71a41a593d0915fec36195105e3d2fcdcf439c309ac1fe2a2d38cabfe054b3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4b71a41a593d0915fec36195105e3d2fcdcf439c309ac1fe2a2d38cabfe054b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tensorflow/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100777, "scanner": "repobility-docker", "fingerprint": "f9e04865a55fecce9727f0d86f9687fd88d17ca11d65cbfcb4782670d2016a38", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f9e04865a55fecce9727f0d86f9687fd88d17ca11d65cbfcb4782670d2016a38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tdengine/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100776, "scanner": "repobility-docker", "fingerprint": "7f01dd86d78d4806c4a77a75c50e614843f0aecbc469977af52396657ff6c2f7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7f01dd86d78d4806c4a77a75c50e614843f0aecbc469977af52396657ff6c2f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tdengine/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100774, "scanner": "repobility-docker", "fingerprint": "dd586c8dcc8e6137c1f2c0cdbf2cd5a7d0efe642cb636d2e5d7626fdb9aae27f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dd586c8dcc8e6137c1f2c0cdbf2cd5a7d0efe642cb636d2e5d7626fdb9aae27f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/td-shim/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100773, "scanner": "repobility-docker", "fingerprint": "532346453a5fff7175ba652e07ca352005bbd02266071a3f8f2bfeffdcfb09dd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|532346453a5fff7175ba652e07ca352005bbd02266071a3f8f2bfeffdcfb09dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/td-shim/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100770, "scanner": "repobility-docker", "fingerprint": "3ec31c557dcde724f2098b2fdf958022ebfa320e3233d464967158abd48c4031", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ec31c557dcde724f2098b2fdf958022ebfa320e3233d464967158abd48c4031"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tcmalloc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100769, "scanner": "repobility-docker", "fingerprint": "7cb39b44f0d692cd2e3693dbf7f4e8efca0725ec08a12ce7aed3d7d670c05d3c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7cb39b44f0d692cd2e3693dbf7f4e8efca0725ec08a12ce7aed3d7d670c05d3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tcmalloc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100766, "scanner": "repobility-docker", "fingerprint": "aee69d1e2a0a28ee5ab06ccfa14b3f3151cbe2ba58378aab26d5e48896ca2bd0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aee69d1e2a0a28ee5ab06ccfa14b3f3151cbe2ba58378aab26d5e48896ca2bd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tarantool/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100765, "scanner": "repobility-docker", "fingerprint": "eeda8666b03b1ac63db5c7991dd540b75e4a23e9854b7409c1abccc5d4241a51", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eeda8666b03b1ac63db5c7991dd540b75e4a23e9854b7409c1abccc5d4241a51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tarantool/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100761, "scanner": "repobility-docker", "fingerprint": "66136ea9c76aff93caf8c2dadf48cef1ade5b93c5e175783a0c0f3ff8b994a39", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|66136ea9c76aff93caf8c2dadf48cef1ade5b93c5e175783a0c0f3ff8b994a39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tailscale/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100760, "scanner": "repobility-docker", "fingerprint": "f9396bc65a323058ac0ccf1421c5c57ec981e08d991c91f21bc1912b6725f93f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f9396bc65a323058ac0ccf1421c5c57ec981e08d991c91f21bc1912b6725f93f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tailscale/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100742, "scanner": "repobility-docker", "fingerprint": "6a012980fc891eaafa136a3d6de9521afafd8f9910de13d5aef53bd6ed949d08", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a012980fc891eaafa136a3d6de9521afafd8f9910de13d5aef53bd6ed949d08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100741, "scanner": "repobility-docker", "fingerprint": "cdf117352010e5f99596d15a81c91980b04ea390b43406bebfdd2b0db10739d5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cdf117352010e5f99596d15a81c91980b04ea390b43406bebfdd2b0db10739d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100736, "scanner": "repobility-docker", "fingerprint": "6c5a9288790ab085bd391b2be7ffca94939ee34cfae38dd0d9e90ef9ad27bf28", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6c5a9288790ab085bd391b2be7ffca94939ee34cfae38dd0d9e90ef9ad27bf28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/struts/Dockerfile"}, "region": {"startLine": 51}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100735, "scanner": "repobility-docker", "fingerprint": "6e486e8cbfee2e64080d855473251120df58edf43e1bf0630e2cb92fe51ac5c0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e486e8cbfee2e64080d855473251120df58edf43e1bf0630e2cb92fe51ac5c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/struts/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100732, "scanner": "repobility-docker", "fingerprint": "81aa1e14d2ce2286ea1572d017b2a1c5f0c675dcc0b5030fae9937a0d68db014", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|81aa1e14d2ce2286ea1572d017b2a1c5f0c675dcc0b5030fae9937a0d68db014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/strongswan/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100731, "scanner": "repobility-docker", "fingerprint": "97d12ea0fc74d373f456f074c2ab049fcf779e122ee559634e8ba5fe70c8734d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|97d12ea0fc74d373f456f074c2ab049fcf779e122ee559634e8ba5fe70c8734d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/strongswan/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100726, "scanner": "repobility-docker", "fingerprint": "6bc0368d0ac65bc555737c2c9c57973575e11447ebc16209d2896384b8e8618a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6bc0368d0ac65bc555737c2c9c57973575e11447ebc16209d2896384b8e8618a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100725, "scanner": "repobility-docker", "fingerprint": "c25d27300743c461944b5793f384e7bce005a815e7fd629c2cdea13b56f125da", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c25d27300743c461944b5793f384e7bce005a815e7fd629c2cdea13b56f125da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100722, "scanner": "repobility-docker", "fingerprint": "8ef2997c18e32ff784f51197f4a3b8ad83bd973aae6b35dcc72458fcbe08e15c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8ef2997c18e32ff784f51197f4a3b8ad83bd973aae6b35dcc72458fcbe08e15c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 56}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100721, "scanner": "repobility-docker", "fingerprint": "ef85ac200483f142dedc6d5b7ab47279d66d378c7975586ee3ca11250325a1b2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ef85ac200483f142dedc6d5b7ab47279d66d378c7975586ee3ca11250325a1b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 56}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100720, "scanner": "repobility-docker", "fingerprint": "d84cf699c3ad19455acd9bc5fad8b3a8bf22655d7069bfabb375bdf7c8c1f633", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d84cf699c3ad19455acd9bc5fad8b3a8bf22655d7069bfabb375bdf7c8c1f633"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 54}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100719, "scanner": "repobility-docker", "fingerprint": "9cf219e2d3e1edcf0f5c502b3cdbea6634e1bdaeffcef8b2b85597ab59750349", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9cf219e2d3e1edcf0f5c502b3cdbea6634e1bdaeffcef8b2b85597ab59750349"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 54}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100718, "scanner": "repobility-docker", "fingerprint": "790a8bf031fbaec9bf2871944822b0de670ee7033ddc199a51a1bff5fc19c22b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|790a8bf031fbaec9bf2871944822b0de670ee7033ddc199a51a1bff5fc19c22b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100717, "scanner": "repobility-docker", "fingerprint": "a5f7d3f661670af20cf9bb47d84503a0d1b5db8c8fcde4e73c4bc7945da2e456", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a5f7d3f661670af20cf9bb47d84503a0d1b5db8c8fcde4e73c4bc7945da2e456"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100707, "scanner": "repobility-docker", "fingerprint": "b86fcf00c8c96bd3108366dd2f4d0ea19b9063822ff89820f4d825d210a53cff", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b86fcf00c8c96bd3108366dd2f4d0ea19b9063822ff89820f4d825d210a53cff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100706, "scanner": "repobility-docker", "fingerprint": "79cac9b13d8ea269297106a7bd42e8695179ab3da3bb9645a75908cc3c97320b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|79cac9b13d8ea269297106a7bd42e8695179ab3da3bb9645a75908cc3c97320b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sqlite3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100696, "scanner": "repobility-docker", "fingerprint": "6ec8c583906541b09a867758218aed6351b88b4d8554d4e1426436180dd60ce7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ec8c583906541b09a867758218aed6351b88b4d8554d4e1426436180dd60ce7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sql-parser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100695, "scanner": "repobility-docker", "fingerprint": "4203f023ca31dbf89bb9e253674a7aaa0613a9a4310adfc6178b1de05261a600", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4203f023ca31dbf89bb9e253674a7aaa0613a9a4310adfc6178b1de05261a600"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sql-parser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100692, "scanner": "repobility-docker", "fingerprint": "238c2396c2ca6377785b68aa43ad5c444b78466e0e09ec8ad966545b810fdc0e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|238c2396c2ca6377785b68aa43ad5c444b78466e0e09ec8ad966545b810fdc0e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-webflow/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100691, "scanner": "repobility-docker", "fingerprint": "cba5092847fa6646cada4c39349b6d31b61c503b6fc4154544a875e48331a51b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cba5092847fa6646cada4c39349b6d31b61c503b6fc4154544a875e48331a51b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-webflow/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100688, "scanner": "repobility-docker", "fingerprint": "145f4701d8eb695d49eea3572955dcb6b9438174e604e7ea94792526d785b74b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|145f4701d8eb695d49eea3572955dcb6b9438174e604e7ea94792526d785b74b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-shell/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100687, "scanner": "repobility-docker", "fingerprint": "fc878609aacb70305c87a015c1d4adc827e2137f839f386354f19b60bdacfc9f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fc878609aacb70305c87a015c1d4adc827e2137f839f386354f19b60bdacfc9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-shell/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100684, "scanner": "repobility-docker", "fingerprint": "935f6aa034d2ab6fa5b9122f4d695ce356c65c750ff3859eda62f7e6fa942ddf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|935f6aa034d2ab6fa5b9122f4d695ce356c65c750ff3859eda62f7e6fa942ddf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-security/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100683, "scanner": "repobility-docker", "fingerprint": "fc86d629141e079e6a7a2d12dfe90c7c77433db55ee769010e95a0315f44a007", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fc86d629141e079e6a7a2d12dfe90c7c77433db55ee769010e95a0315f44a007"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-security/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100680, "scanner": "repobility-docker", "fingerprint": "74f0ab934a8b8eae0666020cbcd8160e10ea93b7a1f13df14e22ab7edc8e1830", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|74f0ab934a8b8eae0666020cbcd8160e10ea93b7a1f13df14e22ab7edc8e1830"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-retry/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100679, "scanner": "repobility-docker", "fingerprint": "597df0f1a56b298dc435134399b0df3eb0effdcc97bb364230508dcd88332450", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|597df0f1a56b298dc435134399b0df3eb0effdcc97bb364230508dcd88332450"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-retry/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100676, "scanner": "repobility-docker", "fingerprint": "d798095405aad7e1cb2bdaaa6c428b2de0851c73f67f57033cfb166cd212ed80", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d798095405aad7e1cb2bdaaa6c428b2de0851c73f67f57033cfb166cd212ed80"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-ldap/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100675, "scanner": "repobility-docker", "fingerprint": "dbab7b2494877163a82a69b8a8edd445256d3344478fc88ca517e489317179d6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dbab7b2494877163a82a69b8a8edd445256d3344478fc88ca517e489317179d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-ldap/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100673, "scanner": "repobility-docker", "fingerprint": "336838c6918717e41862ac2766cc02c5edb77d79a7af68d403627ac4f4443fa3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|336838c6918717e41862ac2766cc02c5edb77d79a7af68d403627ac4f4443fa3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-integration/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100672, "scanner": "repobility-docker", "fingerprint": "657be03b5577418fde1a901e15272b636fb3e2920d2f541dfe0add09df1caa43", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|657be03b5577418fde1a901e15272b636fb3e2920d2f541dfe0add09df1caa43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-integration/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100668, "scanner": "repobility-docker", "fingerprint": "5001eb3c56ea6215ab28220bf77ac338bdbec633a32646c85084e7dbd3760bea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5001eb3c56ea6215ab28220bf77ac338bdbec633a32646c85084e7dbd3760bea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-framework/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100667, "scanner": "repobility-docker", "fingerprint": "ea4748f4fbf167b189f96d282ef56d30f07b70b58adef4e10964a6c1a81d28f2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ea4748f4fbf167b189f96d282ef56d30f07b70b58adef4e10964a6c1a81d28f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-framework/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100664, "scanner": "repobility-docker", "fingerprint": "3c0dd40c3dfe31936e449551e9d722889818eae10fb6704abb341bb2e18c8dd2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c0dd40c3dfe31936e449551e9d722889818eae10fb6704abb341bb2e18c8dd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-redis/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100663, "scanner": "repobility-docker", "fingerprint": "2ec8bbd5a71dd736ede47e458887de5f8ccb6768528db46e4540ad333c5e5aa6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2ec8bbd5a71dd736ede47e458887de5f8ccb6768528db46e4540ad333c5e5aa6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-redis/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100660, "scanner": "repobility-docker", "fingerprint": "f84db299e6119ff5cf89c73536f6b9509e6fd1f09e3472d960c83f6e498864ce", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f84db299e6119ff5cf89c73536f6b9509e6fd1f09e3472d960c83f6e498864ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-mongodb/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100659, "scanner": "repobility-docker", "fingerprint": "c1e45b04f0cbefecfaf409053fa66ce0143716ac3de000ab6db4eb8a4d873697", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c1e45b04f0cbefecfaf409053fa66ce0143716ac3de000ab6db4eb8a4d873697"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-mongodb/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100656, "scanner": "repobility-docker", "fingerprint": "672b39e601764ded82e711fc45746ef958ed49cab7658591c1c0094836f75d07", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|672b39e601764ded82e711fc45746ef958ed49cab7658591c1c0094836f75d07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-keyvalue/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100655, "scanner": "repobility-docker", "fingerprint": "8214afeb6b7a387e1601152f0742681c48c6aa867e49af749f77869424953d14", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8214afeb6b7a387e1601152f0742681c48c6aa867e49af749f77869424953d14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-keyvalue/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100652, "scanner": "repobility-docker", "fingerprint": "8a898f7bf69bd36e996766193a4aff7cb9bad4cd2845dc4fa7f5a43d9c4f2603", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a898f7bf69bd36e996766193a4aff7cb9bad4cd2845dc4fa7f5a43d9c4f2603"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-jpa/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100651, "scanner": "repobility-docker", "fingerprint": "1a6e38d3e1d5d4f517e9b909d42d86f4c369352c8e080c5a28f7e5c6bf6f5872", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1a6e38d3e1d5d4f517e9b909d42d86f4c369352c8e080c5a28f7e5c6bf6f5872"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-data-jpa/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100648, "scanner": "repobility-docker", "fingerprint": "9c69a21707ab064abdc1e3f407592bfd65ba8b00ce5d1fc2c1abfa027326e9ab", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c69a21707ab064abdc1e3f407592bfd65ba8b00ce5d1fc2c1abfa027326e9ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-stream/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100647, "scanner": "repobility-docker", "fingerprint": "54e8b73e4329bed2cc8479cbec363f80391f72a1542ee28dbaf4bc9fd0d93587", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|54e8b73e4329bed2cc8479cbec363f80391f72a1542ee28dbaf4bc9fd0d93587"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-stream/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100644, "scanner": "repobility-docker", "fingerprint": "03cde7ba8f4d4614ce43cf39a4dc95ad1ad8ac0139bce3902bdc1b104bdab080", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03cde7ba8f4d4614ce43cf39a4dc95ad1ad8ac0139bce3902bdc1b104bdab080"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-sleuth-brave/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100643, "scanner": "repobility-docker", "fingerprint": "e2a2e7faa62923d64ab646e74aa8f101740a639510a52e30a105dd3423fdfc28", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e2a2e7faa62923d64ab646e74aa8f101740a639510a52e30a105dd3423fdfc28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-sleuth-brave/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100637, "scanner": "repobility-docker", "fingerprint": "22bcf14280dc9955e16b72a8887e4f4cdf34bd91ced90536c5a352a7a5c685b5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|22bcf14280dc9955e16b72a8887e4f4cdf34bd91ced90536c5a352a7a5c685b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-commons/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100636, "scanner": "repobility-docker", "fingerprint": "dbe42636dc6d65bb917ca972ded38627907866804972a8b423b5a133a5bdf16b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dbe42636dc6d65bb917ca972ded38627907866804972a8b423b5a133a5bdf16b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-cloud-commons/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100632, "scanner": "repobility-docker", "fingerprint": "5ecc4f7f58fbc879ea3e658c48c6fc82dac30b586b8a4a4a0cafa3484b97f281", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ecc4f7f58fbc879ea3e658c48c6fc82dac30b586b8a4a4a0cafa3484b97f281"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-boot/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100631, "scanner": "repobility-docker", "fingerprint": "3ce5033b500048678d91d2d67e0912307b2905b55623800067de9c0e4291a986", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3ce5033b500048678d91d2d67e0912307b2905b55623800067de9c0e4291a986"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-boot/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100628, "scanner": "repobility-docker", "fingerprint": "e520494cb4964e39cd42e7fca87d36419f382bd5f352fd3dab095da4165acb65", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e520494cb4964e39cd42e7fca87d36419f382bd5f352fd3dab095da4165acb65"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-amqp/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100627, "scanner": "repobility-docker", "fingerprint": "233d6e873229c9b997ed504b90eac45979f0f712b15f8a96da69ff19b2cf6bfd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|233d6e873229c9b997ed504b90eac45979f0f712b15f8a96da69ff19b2cf6bfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spring-amqp/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100625, "scanner": "repobility-docker", "fingerprint": "1a4d292ffc406c5709457544c44a5432dc806106cd73719239562e84bf980344", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a4d292ffc406c5709457544c44a5432dc806106cd73719239562e84bf980344"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spotify-json/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100624, "scanner": "repobility-docker", "fingerprint": "49be90a5c9a5770d6f3e69fe3e9d65bf5f80aa2a5a7d74fcf3432ade2db28b98", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|49be90a5c9a5770d6f3e69fe3e9d65bf5f80aa2a5a7d74fcf3432ade2db28b98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spotify-json/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100621, "scanner": "repobility-docker", "fingerprint": "aef50b413bffc5250453bb5c0e396e0e8ba7ddfc2131ceb6d9bfbae5e6823f82", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aef50b413bffc5250453bb5c0e396e0e8ba7ddfc2131ceb6d9bfbae5e6823f82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-tools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100620, "scanner": "repobility-docker", "fingerprint": "e5b175fa101a522a8f6ecafbe1c0c561234ef72d46d4441367e96ebf498c9b07", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e5b175fa101a522a8f6ecafbe1c0c561234ef72d46d4441367e96ebf498c9b07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-tools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100618, "scanner": "repobility-docker", "fingerprint": "12a53cb407a775c0845a90afd59c7e9b82af8ae8aee70f23118cb229c32ce78b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12a53cb407a775c0845a90afd59c7e9b82af8ae8aee70f23118cb229c32ce78b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-cross/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100617, "scanner": "repobility-docker", "fingerprint": "319fa76175d83a381703b3a88df8413194b16f8bbe3bf3c453bc5baf7853fb9f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|319fa76175d83a381703b3a88df8413194b16f8bbe3bf3c453bc5baf7853fb9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spirv-cross/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100614, "scanner": "repobility-docker", "fingerprint": "a3ec90e9bf078523ff0fcd41c3f0946a5b8d1a7836bd9e0ed62db9caa33d91f9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a3ec90e9bf078523ff0fcd41c3f0946a5b8d1a7836bd9e0ed62db9caa33d91f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey-ufi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100612, "scanner": "repobility-docker", "fingerprint": "5fa1311247b6c25c758c268cc851b95e568598abc89ad65680261d2957fca230", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5fa1311247b6c25c758c268cc851b95e568598abc89ad65680261d2957fca230"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100611, "scanner": "repobility-docker", "fingerprint": "5d34b0816cff105ca9cf76b5cdf0691d4ceb3394039a08c38851aabf66a46a3b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5d34b0816cff105ca9cf76b5cdf0691d4ceb3394039a08c38851aabf66a46a3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spidermonkey/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100606, "scanner": "repobility-docker", "fingerprint": "fc6b666cdef5fa68c5a12884d2b1011ef9b00712d540143511be245b2c35b1d8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fc6b666cdef5fa68c5a12884d2b1011ef9b00712d540143511be245b2c35b1d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spice-usbredir/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100605, "scanner": "repobility-docker", "fingerprint": "d0100af3ab86b4824e78f1412186680b89f345709e79fe1b3e009047bac1926a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d0100af3ab86b4824e78f1412186680b89f345709e79fe1b3e009047bac1926a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spice-usbredir/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100604, "scanner": "repobility-docker", "fingerprint": "ff567bac6a311b73e2adade47a978d6d940c471f9c09119e2186a3c7d072318b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ff567bac6a311b73e2adade47a978d6d940c471f9c09119e2186a3c7d072318b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spice-usbredir/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100601, "scanner": "repobility-docker", "fingerprint": "0f748e46b05655fc9ace836f8bb4aed9744243234345ac0e0a76301cb43605e2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f748e46b05655fc9ace836f8bb4aed9744243234345ac0e0a76301cb43605e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/speex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100600, "scanner": "repobility-docker", "fingerprint": "5d7423748d716ee8daac6df3feb57ff6cca6246797cfcb65452d9f7f229fdbac", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5d7423748d716ee8daac6df3feb57ff6cca6246797cfcb65452d9f7f229fdbac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/speex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100595, "scanner": "repobility-docker", "fingerprint": "5eda1578aaad0b736f90bac7b9536ca3a54d9d71fef5af26eeca9152e082223b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5eda1578aaad0b736f90bac7b9536ca3a54d9d71fef5af26eeca9152e082223b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdlog/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100594, "scanner": "repobility-docker", "fingerprint": "aaa04b4617bdde4e774c8ad2199b99a8b329be5fc01419ccc88b6f97a6525c0a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aaa04b4617bdde4e774c8ad2199b99a8b329be5fc01419ccc88b6f97a6525c0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdlog/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100591, "scanner": "repobility-docker", "fingerprint": "02e2061417c230d00de81736270d3b3e0324b9729526ea035390f24722cb1fcf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02e2061417c230d00de81736270d3b3e0324b9729526ea035390f24722cb1fcf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100590, "scanner": "repobility-docker", "fingerprint": "990dc6b2020e45e3ea59892dda6315060e0655cfe41aac906fb50aae3786a9de", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|990dc6b2020e45e3ea59892dda6315060e0655cfe41aac906fb50aae3786a9de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/spdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100585, "scanner": "repobility-docker", "fingerprint": "ea1a1d809877af88fb95d66be5473c4dd501b41aa147b9b7fd782b8c11df2f6a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ea1a1d809877af88fb95d66be5473c4dd501b41aa147b9b7fd782b8c11df2f6a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/soupsieve/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100581, "scanner": "repobility-docker", "fingerprint": "cce40026e146af29fbfbac8186744325878e87f02458418811a30ceb3662cad0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cce40026e146af29fbfbac8186744325878e87f02458418811a30ceb3662cad0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/solidity/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100580, "scanner": "repobility-docker", "fingerprint": "83310001b23ba6788e99fa33e6197c34739c859823c753b265a0031868c4089a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|83310001b23ba6788e99fa33e6197c34739c859823c753b265a0031868c4089a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/solidity/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100576, "scanner": "repobility-docker", "fingerprint": "5afb7bae04fa3b3322b93759bd759c46be5e3b7923cf9e9cb52573b4c7239399", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5afb7bae04fa3b3322b93759bd759c46be5e3b7923cf9e9cb52573b4c7239399"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100575, "scanner": "repobility-docker", "fingerprint": "d066be452a92c44c44b3f92a3400167f2f3d5583eb50dfaf87cba00cee8cc85d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d066be452a92c44c44b3f92a3400167f2f3d5583eb50dfaf87cba00cee8cc85d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/snappy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100564, "scanner": "repobility-docker", "fingerprint": "8c7ef2044bcf1da11d61bfa013c49bf1b4c40c0071caad0218be2436c2991c89", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8c7ef2044bcf1da11d61bfa013c49bf1b4c40c0071caad0218be2436c2991c89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sleuthkit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100563, "scanner": "repobility-docker", "fingerprint": "d83e2fe5520521eb41d29f9432f409c6ad49c6338db57a99a7bec5c77b8e1dbb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d83e2fe5520521eb41d29f9432f409c6ad49c6338db57a99a7bec5c77b8e1dbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sleuthkit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100550, "scanner": "repobility-docker", "fingerprint": "988a8b72dd4c43f59524ab15cd1a8919406130af08c320f5cb75d1d0e07c53c9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|988a8b72dd4c43f59524ab15cd1a8919406130af08c320f5cb75d1d0e07c53c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdutf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100549, "scanner": "repobility-docker", "fingerprint": "8e6be5253e20499dd19bd1b32edc737bf2725856947ace20c47eb69cf88fc4b8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8e6be5253e20499dd19bd1b32edc737bf2725856947ace20c47eb69cf88fc4b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdutf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100546, "scanner": "repobility-docker", "fingerprint": "590ec8ecaa5ef3306e42cd2fd1f36bf4d90a6c505786393a0e9a40f6b72fb382", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|590ec8ecaa5ef3306e42cd2fd1f36bf4d90a6c505786393a0e9a40f6b72fb382"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdjson/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100545, "scanner": "repobility-docker", "fingerprint": "6086efae7cbed0418e648b745b998564a2977522aa4a26d704f977b2f1608aa4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6086efae7cbed0418e648b745b998564a2977522aa4a26d704f977b2f1608aa4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simdjson/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100542, "scanner": "repobility-docker", "fingerprint": "73295bd14431097edb8ceacd551d8125c0a786af5d5b8263278e60ad56aa0c2d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73295bd14431097edb8ceacd551d8125c0a786af5d5b8263278e60ad56aa0c2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100541, "scanner": "repobility-docker", "fingerprint": "e29bc82854df87d8d423536e65ee68964a3c83015a387034cd6813a335633ef5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e29bc82854df87d8d423536e65ee68964a3c83015a387034cd6813a335633ef5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/simd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100530, "scanner": "repobility-docker", "fingerprint": "305060fbc247b0cfaf86533e6a9a9cd741ce45c22521c0da84b5f9e7c8c2934d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|305060fbc247b0cfaf86533e6a9a9cd741ce45c22521c0da84b5f9e7c8c2934d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/shaderc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100529, "scanner": "repobility-docker", "fingerprint": "8af9d089c10122e2b4df5405b42fa73653b4a1c81af6b028b7300d61e5aa43b9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8af9d089c10122e2b4df5405b42fa73653b4a1c81af6b028b7300d61e5aa43b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/shaderc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100526, "scanner": "repobility-docker", "fingerprint": "b0d713c9f40a118d3cbc9f22f9e2ad3804a9e39db63db1be26e17b00a58668ea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b0d713c9f40a118d3cbc9f22f9e2ad3804a9e39db63db1be26e17b00a58668ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/setuptools/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100520, "scanner": "repobility-docker", "fingerprint": "2ecf1f1c799640602402c0e6aae37e9a911af4242fcacb45291739e9870303e0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ecf1f1c799640602402c0e6aae37e9a911af4242fcacb45291739e9870303e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serenity/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100519, "scanner": "repobility-docker", "fingerprint": "8331c6d715244474b5e84976f90b9e30db0ba8306fc0587686c7391c2fd0941f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8331c6d715244474b5e84976f90b9e30db0ba8306fc0587686c7391c2fd0941f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serenity/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100514, "scanner": "repobility-docker", "fingerprint": "1d2774e7c04973ff9138f77f4b2e0281eae0ad7338c8c2cb5586209932967b26", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d2774e7c04973ff9138f77f4b2e0281eae0ad7338c8c2cb5586209932967b26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100513, "scanner": "repobility-docker", "fingerprint": "71804b7a8606253d968f351cab139decdd9754fb11765df579b0a1d84bc56dc0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|71804b7a8606253d968f351cab139decdd9754fb11765df579b0a1d84bc56dc0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/serde_json/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100508, "scanner": "repobility-docker", "fingerprint": "cd688300b9411534178ee0c4b7759dc968b48a75d406dfa713e1cefbc3f63c9a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd688300b9411534178ee0c4b7759dc968b48a75d406dfa713e1cefbc3f63c9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sentencepiece/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100507, "scanner": "repobility-docker", "fingerprint": "8b6306dfdb1ec5e38db13edfcb8e8232a3de5b1f6c722ce7a6322fffc7b51a51", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8b6306dfdb1ec5e38db13edfcb8e8232a3de5b1f6c722ce7a6322fffc7b51a51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/sentencepiece/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100504, "scanner": "repobility-docker", "fingerprint": "b8fdd3b5855c2a2fffd85699da238cb9d04c7258777a30e5a988d291be64ea81", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b8fdd3b5855c2a2fffd85699da238cb9d04c7258777a30e5a988d291be64ea81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/selinux/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100498, "scanner": "repobility-docker", "fingerprint": "bb916007ab8b75eeefa8e6be8053d0d1e1865a0adf87b49a03439db2b9119d44", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bb916007ab8b75eeefa8e6be8053d0d1e1865a0adf87b49a03439db2b9119d44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100497, "scanner": "repobility-docker", "fingerprint": "d6c8bf8be2bfa966b2270109de41c75ad272e4e7df112c9ed35c10d45cbb3f62", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d6c8bf8be2bfa966b2270109de41c75ad272e4e7df112c9ed35c10d45cbb3f62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100496, "scanner": "repobility-docker", "fingerprint": "498248aeff74a08112d3e8aed60147be19a11f4ab7858b417e28fc52ae1d586a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|498248aeff74a08112d3e8aed60147be19a11f4ab7858b417e28fc52ae1d586a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100495, "scanner": "repobility-docker", "fingerprint": "791dbb318ba11e6982b23c30bce2eebe6bfcbf8feff5d398f3a90329cbab43dd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|791dbb318ba11e6982b23c30bce2eebe6bfcbf8feff5d398f3a90329cbab43dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100494, "scanner": "repobility-docker", "fingerprint": "72d4bbca43dd70a6fc049b1c73473a16600860cb588ed50119361f347d8df914", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|72d4bbca43dd70a6fc049b1c73473a16600860cb588ed50119361f347d8df914"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100492, "scanner": "repobility-docker", "fingerprint": "4160d57dc42dad02614e5d89e035351613cf2e6fc03c04959cc6f189cdcb87b9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4160d57dc42dad02614e5d89e035351613cf2e6fc03c04959cc6f189cdcb87b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scikit-learn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100491, "scanner": "repobility-docker", "fingerprint": "4dc81a92f73366075567e6e58760bd84e9a98777993b3963535352e4b2374a14", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4dc81a92f73366075567e6e58760bd84e9a98777993b3963535352e4b2374a14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scikit-learn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100483, "scanner": "repobility-docker", "fingerprint": "2b997402711a468d88d1ef5bd9dd2df860ae0c219b1cb735dc827d70e726a176", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b997402711a468d88d1ef5bd9dd2df860ae0c219b1cb735dc827d70e726a176"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2opc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100482, "scanner": "repobility-docker", "fingerprint": "5349775ba7723379b12951db4e98b30a85c51681ba3f9b4f35b8509ed25d9111", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5349775ba7723379b12951db4e98b30a85c51681ba3f9b4f35b8509ed25d9111"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/s2opc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100473, "scanner": "repobility-docker", "fingerprint": "630c5ad9887e1639def42df16ead5136ffc02d321978a12af38cd6d0cb236c31", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|630c5ad9887e1639def42df16ead5136ffc02d321978a12af38cd6d0cb236c31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rustls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100472, "scanner": "repobility-docker", "fingerprint": "514677b0af48dda2be2cc8745fc2ac8b346cf285c49249e5bd35dd24708d0132", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|514677b0af48dda2be2cc8745fc2ac8b346cf285c49249e5bd35dd24708d0132"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rustls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100456, "scanner": "repobility-docker", "fingerprint": "e72d876d7e9204cdcae97064b050c9b82b27a232c43d67ed374d85adb2616bfc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e72d876d7e9204cdcae97064b050c9b82b27a232c43d67ed374d85adb2616bfc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ruby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100455, "scanner": "repobility-docker", "fingerprint": "361d414e17e8ddde7bbe29cb18483e4978b0a4a10cf6fb574dc8b447a250d1b2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|361d414e17e8ddde7bbe29cb18483e4978b0a4a10cf6fb574dc8b447a250d1b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ruby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100448, "scanner": "repobility-docker", "fingerprint": "d5fbfe316e7aaa8825472158fc2d505fa54fcb59876f92f1ae9fac84efa62af8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d5fbfe316e7aaa8825472158fc2d505fa54fcb59876f92f1ae9fac84efa62af8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ron/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100447, "scanner": "repobility-docker", "fingerprint": "89471e07f1e60ccc4f8a00063a4d9c655a2c796a5a10105d97f9876bd54af9c0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|89471e07f1e60ccc4f8a00063a4d9c655a2c796a5a10105d97f9876bd54af9c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ron/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100442, "scanner": "repobility-docker", "fingerprint": "f08e83c4a6db721588808da1b8038d1036bd2ccec0a8dbebea3a60628945a603", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f08e83c4a6db721588808da1b8038d1036bd2ccec0a8dbebea3a60628945a603"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rocksdb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100441, "scanner": "repobility-docker", "fingerprint": "707228cfc1efce15942ca7f81cd21fba6736b2c0ecb3c0b0789b45935febbaf1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|707228cfc1efce15942ca7f81cd21fba6736b2c0ecb3c0b0789b45935febbaf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rocksdb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100437, "scanner": "repobility-docker", "fingerprint": "8de43a8dc021cb0687211974600f319fb5e2986aed7b1a3bbb40607384e7418e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8de43a8dc021cb0687211974600f319fb5e2986aed7b1a3bbb40607384e7418e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rnp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100436, "scanner": "repobility-docker", "fingerprint": "df619a860ec197d5ce379961d650fa1a350a8800825a19a7b352d9525cc46fbd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df619a860ec197d5ce379961d650fa1a350a8800825a19a7b352d9525cc46fbd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rnp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100423, "scanner": "repobility-docker", "fingerprint": "0399f1ca2ea76015674b1f7a7df84f9da3a45afdbed853d1bb43d456d2f1f08f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0399f1ca2ea76015674b1f7a7df84f9da3a45afdbed853d1bb43d456d2f1f08f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/retrofit/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100422, "scanner": "repobility-docker", "fingerprint": "e3268ae273397910a0e90850bfbe0dc02e5ccad1b330a1c6c2c4c457cb550e74", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e3268ae273397910a0e90850bfbe0dc02e5ccad1b330a1c6c2c4c457cb550e74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/retrofit/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100420, "scanner": "repobility-docker", "fingerprint": "8b4eda372f634bd5d8fe69ec92a404414ab5477fe49917952833fa74ef75dd4a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b4eda372f634bd5d8fe69ec92a404414ab5477fe49917952833fa74ef75dd4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/resiprocate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100419, "scanner": "repobility-docker", "fingerprint": "d4b10d58abc0a3496ef5798b9041b56139f2a015253f87138ffb443116735a53", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d4b10d58abc0a3496ef5798b9041b56139f2a015253f87138ffb443116735a53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/resiprocate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100417, "scanner": "repobility-docker", "fingerprint": "4df639d605fc36551a685526a4ef6804ad1e66853fefe303c5ddd80cfaaa1c3d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4df639d605fc36551a685526a4ef6804ad1e66853fefe303c5ddd80cfaaa1c3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/requests/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100412, "scanner": "repobility-docker", "fingerprint": "3124bf151f2b5644ede168787856bc784d1893f227d6744e3201a4a79f39a4c7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3124bf151f2b5644ede168787856bc784d1893f227d6744e3201a4a79f39a4c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/relic/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100411, "scanner": "repobility-docker", "fingerprint": "cc3b2cff750514df991dd030d4b03590d8e50ae05218f4c903800161ecd41079", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cc3b2cff750514df991dd030d4b03590d8e50ae05218f4c903800161ecd41079"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/relic/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100406, "scanner": "repobility-docker", "fingerprint": "ffce1891c730ad2b5e3a4c9880287129be778a4a463c17646f718430c4458077", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ffce1891c730ad2b5e3a4c9880287129be778a4a463c17646f718430c4458077"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reflections/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100405, "scanner": "repobility-docker", "fingerprint": "5d03589ead802eae82f9ce8cc583e147c806ef49f2e2547d613a82fc7605aa1c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5d03589ead802eae82f9ce8cc583e147c806ef49f2e2547d613a82fc7605aa1c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/reflections/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100396, "scanner": "repobility-docker", "fingerprint": "8bd65af6ea8ce3e37b7dad48a2c4c6dc4565a0fdcfcedc07fac0304a832d2c54", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8bd65af6ea8ce3e37b7dad48a2c4c6dc4565a0fdcfcedc07fac0304a832d2c54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/readstat/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100395, "scanner": "repobility-docker", "fingerprint": "8080746e43ab3c57434e2d09531a4f8a4be798bb902a102f90cf42a0921c332d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8080746e43ab3c57434e2d09531a4f8a4be798bb902a102f90cf42a0921c332d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/readstat/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100392, "scanner": "repobility-docker", "fingerprint": "befc9b5fdf9cb8d7bc337ce2440853a18faf374d85c04c6b61c5741a5492e96c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|befc9b5fdf9cb8d7bc337ce2440853a18faf374d85c04c6b61c5741a5492e96c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/re2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100391, "scanner": "repobility-docker", "fingerprint": "1c60a16e47fc0e577e5731aa82cc0ecdda79d42cacab625b09ae0726fa8f4d40", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c60a16e47fc0e577e5731aa82cc0ecdda79d42cacab625b09ae0726fa8f4d40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/re2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100388, "scanner": "repobility-docker", "fingerprint": "d4f861aeeee85acfa46df21f362c214832247734adc9d156b67652b19199d1cd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4f861aeeee85acfa46df21f362c214832247734adc9d156b67652b19199d1cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdkit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100387, "scanner": "repobility-docker", "fingerprint": "40221d03d63a8b6dabbd8c84cb2bc39418cc570e92ff35509cdf95c627c36dca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|40221d03d63a8b6dabbd8c84cb2bc39418cc570e92ff35509cdf95c627c36dca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rdkit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100382, "scanner": "repobility-docker", "fingerprint": "ff3cf00561d542393e30e0cb3c276d7e1252a979a7a19cee7781d0b01ca2232a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff3cf00561d542393e30e0cb3c276d7e1252a979a7a19cee7781d0b01ca2232a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rauc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100381, "scanner": "repobility-docker", "fingerprint": "071cb05121683ccc77abe351487f99ba39d1d9f243b5657639df19ef715a7530", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|071cb05121683ccc77abe351487f99ba39d1d9f243b5657639df19ef715a7530"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rauc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100378, "scanner": "repobility-docker", "fingerprint": "314ae4f97ce2809829163fdf8dd3b2801783faf46fc932539b81bf127d501228", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|314ae4f97ce2809829163fdf8dd3b2801783faf46fc932539b81bf127d501228"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rapidjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100377, "scanner": "repobility-docker", "fingerprint": "9ac42c4cc17512044dca88e09468cddba38609d788dc07f4edcee6bd66460558", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9ac42c4cc17512044dca88e09468cddba38609d788dc07f4edcee6bd66460558"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rapidjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100374, "scanner": "repobility-docker", "fingerprint": "923f2662a2f29af922f0ede43c5e520b5571f2d3e060d60099a05349a0394907", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|923f2662a2f29af922f0ede43c5e520b5571f2d3e060d60099a05349a0394907"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radvd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100373, "scanner": "repobility-docker", "fingerprint": "6f3b34ece12cd0ef890c561cd0ad10b3a982f928b1b4c25def94bb4d17c96f6e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6f3b34ece12cd0ef890c561cd0ad10b3a982f928b1b4c25def94bb4d17c96f6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radvd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100369, "scanner": "repobility-docker", "fingerprint": "91e58e8081de1217529998c548c48e298e6f3212d89904abaf36623052386103", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|91e58e8081de1217529998c548c48e298e6f3212d89904abaf36623052386103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/radare2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100365, "scanner": "repobility-docker", "fingerprint": "8b962b1790be25e4a2770cc1e1add040c7d76f84cea4561e6a007fc6a75b9a9d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b962b1790be25e4a2770cc1e1add040c7d76f84cea4561e6a007fc6a75b9a9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rabbitmq-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100364, "scanner": "repobility-docker", "fingerprint": "a560ecf63bd1eb5232d23dbb59730bc460795336863c4b70fdc96b59a3f53f4b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a560ecf63bd1eb5232d23dbb59730bc460795336863c4b70fdc96b59a3f53f4b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/rabbitmq-c/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100361, "scanner": "repobility-docker", "fingerprint": "9030e92bb0188b6b16868c75940e1a204def9bf8ea9bb285ec47aae9c42789eb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9030e92bb0188b6b16868c75940e1a204def9bf8ea9bb285ec47aae9c42789eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quickjs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100360, "scanner": "repobility-docker", "fingerprint": "37a67dd8ac69c617bbd8cbbcbbc2068027ed183fc649a1250edd5c2260d9e043", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|37a67dd8ac69c617bbd8cbbcbbc2068027ed183fc649a1250edd5c2260d9e043"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quickjs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100353, "scanner": "repobility-docker", "fingerprint": "b99b2cf1281847d3292a4009bfe5d78f6d3235f59ed8e0d4b02d12d35225a205", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b99b2cf1281847d3292a4009bfe5d78f6d3235f59ed8e0d4b02d12d35225a205"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quiche/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100352, "scanner": "repobility-docker", "fingerprint": "50f95427bc0ce98099ba593874e7074a5bd6ae70b42d763db949e7e95eb6ed2e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|50f95427bc0ce98099ba593874e7074a5bd6ae70b42d763db949e7e95eb6ed2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quiche/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100344, "scanner": "repobility-docker", "fingerprint": "ab43479e4cd7b0b4dfda4c062151270821bc3ac1aac9a88d3195a423f221cc74", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ab43479e4cd7b0b4dfda4c062151270821bc3ac1aac9a88d3195a423f221cc74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quantlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100343, "scanner": "repobility-docker", "fingerprint": "87277c48cb85474ccb1f99580a0782302011a7a5a156e461cbf399e33ebf77a3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|87277c48cb85474ccb1f99580a0782302011a7a5a156e461cbf399e33ebf77a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/quantlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100340, "scanner": "repobility-docker", "fingerprint": "0c9d0958a35a3bd0fd6e24f1afad24e7b1b858fcf8d3647289c26a17bc91e251", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0c9d0958a35a3bd0fd6e24f1afad24e7b1b858fcf8d3647289c26a17bc91e251"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qt/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100339, "scanner": "repobility-docker", "fingerprint": "850a0dd88efa781ad72c6a898c71abb8a091f73d0800668740cecc162e0c7569", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|850a0dd88efa781ad72c6a898c71abb8a091f73d0800668740cecc162e0c7569"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qt/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100336, "scanner": "repobility-docker", "fingerprint": "45918fc1690050d8343d7250bab260705347741c00d9b0e3b16e8fcbb4337813", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45918fc1690050d8343d7250bab260705347741c00d9b0e3b16e8fcbb4337813"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpid-proton/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100335, "scanner": "repobility-docker", "fingerprint": "55dc3547a43414936b02f7b37d8eb6ee93209a92134c6e6108370b3ed76655d7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55dc3547a43414936b02f7b37d8eb6ee93209a92134c6e6108370b3ed76655d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpid-proton/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100334, "scanner": "repobility-docker", "fingerprint": "9fde016a6efc2a370c10a134f8be97556820547c0ddd21b64aa83811b6a6c0ac", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9fde016a6efc2a370c10a134f8be97556820547c0ddd21b64aa83811b6a6c0ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpid-proton/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100331, "scanner": "repobility-docker", "fingerprint": "409e65f0fdbc49d3176ff43aab121658d566b55de138487c1d44238868f19406", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|409e65f0fdbc49d3176ff43aab121658d566b55de138487c1d44238868f19406"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100330, "scanner": "repobility-docker", "fingerprint": "b055fc2f0730a608f7bb0ea92b0e416cee254a01573783b549aec22f1d3df3ad", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b055fc2f0730a608f7bb0ea92b0e416cee254a01573783b549aec22f1d3df3ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qpdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100327, "scanner": "repobility-docker", "fingerprint": "e595cee72116bb808de28ca36817163db6a7a0c093c6d37807e991e9133ecc0f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e595cee72116bb808de28ca36817163db6a7a0c093c6d37807e991e9133ecc0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qemu/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100326, "scanner": "repobility-docker", "fingerprint": "ddd26360685ab85621e7dfcfd500ad58028e920f4e304226853afd75efd13889", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ddd26360685ab85621e7dfcfd500ad58028e920f4e304226853afd75efd13889"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qemu/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100325, "scanner": "repobility-docker", "fingerprint": "a5749ab212f0371e48e54766b17f50adb825257577c972505ebadc1f70b5c652", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a5749ab212f0371e48e54766b17f50adb825257577c972505ebadc1f70b5c652"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qemu/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100322, "scanner": "repobility-docker", "fingerprint": "87a874f17f70e5a7a7a6a446a650c44065c513f6598f605dcc462f610e56c65e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87a874f17f70e5a7a7a6a446a650c44065c513f6598f605dcc462f610e56c65e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qdox/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100321, "scanner": "repobility-docker", "fingerprint": "1f522a9e033161642e7f6dff025455a5b77068abf538572f8b3685dadb08f09f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1f522a9e033161642e7f6dff025455a5b77068abf538572f8b3685dadb08f09f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qdox/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100318, "scanner": "repobility-docker", "fingerprint": "96066a3a4825af7b0c2de4497f886b8ad59432a2fb177e13eafc7eaa0071928e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96066a3a4825af7b0c2de4497f886b8ad59432a2fb177e13eafc7eaa0071928e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qcms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100317, "scanner": "repobility-docker", "fingerprint": "abf9369940e8864ea65e8877059821ba6e1fac8fe9be4ba233845ff74ba406fb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|abf9369940e8864ea65e8877059821ba6e1fac8fe9be4ba233845ff74ba406fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/qcms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100314, "scanner": "repobility-docker", "fingerprint": "bd90a463d90a14bbc7aa52b8aef79de8e4a15b22549729f71654f88e76d9bd18", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bd90a463d90a14bbc7aa52b8aef79de8e4a15b22549729f71654f88e76d9bd18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyzmq/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100313, "scanner": "repobility-docker", "fingerprint": "f1f50e6fc4e5498546b0bf5f917f5445b492711957f7199fa98de484c85c000f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1f50e6fc4e5498546b0bf5f917f5445b492711957f7199fa98de484c85c000f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyzmq/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100312, "scanner": "repobility-docker", "fingerprint": "a247ff64e93e4b93ab7c94c90e871e72d9b2f742e8aaa24a9d5dff13182a3bde", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a247ff64e93e4b93ab7c94c90e871e72d9b2f742e8aaa24a9d5dff13182a3bde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyzmq/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100309, "scanner": "repobility-docker", "fingerprint": "cd7a26b1a8eea2ff4f216db712de41c217fff01dcb70e0ecf1631ccc975152df", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cd7a26b1a8eea2ff4f216db712de41c217fff01dcb70e0ecf1631ccc975152df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyyaml/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100306, "scanner": "repobility-docker", "fingerprint": "b3cbe08b8267e02cfbf1817b2fe35d8740ca7cf0d40195ff348d55ee5335cd25", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b3cbe08b8267e02cfbf1817b2fe35d8740ca7cf0d40195ff348d55ee5335cd25"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyxdg/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100305, "scanner": "repobility-docker", "fingerprint": "bfdd209b039954760d6fbf68d3b1521aacc171c2fa17bddb9111491b75217497", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bfdd209b039954760d6fbf68d3b1521aacc171c2fa17bddb9111491b75217497"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyxdg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100302, "scanner": "repobility-docker", "fingerprint": "26b1e2f23c94cd493962f5530f6a67afc2ce3feb9618523a7d2a533fb88eec12", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|26b1e2f23c94cd493962f5530f6a67afc2ce3feb9618523a7d2a533fb88eec12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyvex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100301, "scanner": "repobility-docker", "fingerprint": "79ba09d83af241811db473f3ff8efb91812e7fd842c76a9e62457f4d3ea63283", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|79ba09d83af241811db473f3ff8efb91812e7fd842c76a9e62457f4d3ea63283"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyvex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100299, "scanner": "repobility-docker", "fingerprint": "2c4048fae725291176af42b3a8e0dfb7722cd6aedb2b769a594903ffc0e4da52", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c4048fae725291176af42b3a8e0dfb7722cd6aedb2b769a594903ffc0e4da52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100298, "scanner": "repobility-docker", "fingerprint": "976ed0ffdb60952f26076e91a81cb2d6f11154daca0ee0d518a60da453fa2668", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|976ed0ffdb60952f26076e91a81cb2d6f11154daca0ee0d518a60da453fa2668"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100293, "scanner": "repobility-docker", "fingerprint": "a7c59a8e4365ca260e1c3c3eba33a100d292f1649b87093a95e89f0a0669b909", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7c59a8e4365ca260e1c3c3eba33a100d292f1649b87093a95e89f0a0669b909"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-libraries/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100292, "scanner": "repobility-docker", "fingerprint": "c0117e5136157758d888c87648f6c3b3aed543db5cd2e1b51de8cfffc744b711", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c0117e5136157758d888c87648f6c3b3aed543db5cd2e1b51de8cfffc744b711"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python3-libraries/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100289, "scanner": "repobility-docker", "fingerprint": "50edd8b27f54e4c2b6fc765b2e0a70fd764571361aeefbf03c23c4e2d71a5611", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|50edd8b27f54e4c2b6fc765b2e0a70fd764571361aeefbf03c23c4e2d71a5611"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-tabulate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100288, "scanner": "repobility-docker", "fingerprint": "d370b7e60811c6ce20ede2dfa0d573bea062f3f0afa67cd8e3d268f724598091", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d370b7e60811c6ce20ede2dfa0d573bea062f3f0afa67cd8e3d268f724598091"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-tabulate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100277, "scanner": "repobility-docker", "fingerprint": "419798d947872b654eea7c72cc7471dafd7a0ceb0bf07f8df62f6960f66117d5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|419798d947872b654eea7c72cc7471dafd7a0ceb0bf07f8df62f6960f66117d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-phonenumbers/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100276, "scanner": "repobility-docker", "fingerprint": "8ceada58eb30bed19a87ae9ecb40fbf7e3f49e8eb9f9e2a3b549eb75565ba764", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ceada58eb30bed19a87ae9ecb40fbf7e3f49e8eb9f9e2a3b549eb75565ba764"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-phonenumbers/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100268, "scanner": "repobility-docker", "fingerprint": "af7ff3fe11b015905ca63a4e0d628c1e678b4064e9d7fbd885b88cc27a146799", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|af7ff3fe11b015905ca63a4e0d628c1e678b4064e9d7fbd885b88cc27a146799"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-multipart/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100267, "scanner": "repobility-docker", "fingerprint": "e8f40e55fc398eaf8fe168d2434bdb1a38b9ac7df02f406518534ee8f0d80ac5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e8f40e55fc398eaf8fe168d2434bdb1a38b9ac7df02f406518534ee8f0d80ac5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-multipart/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100266, "scanner": "repobility-docker", "fingerprint": "b951be80fd3eb3df13f345283885703fb5cc2eebc100844b17592a61d21da4ed", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b951be80fd3eb3df13f345283885703fb5cc2eebc100844b17592a61d21da4ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-multipart/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100248, "scanner": "repobility-docker", "fingerprint": "efc0ffa58082bb1bfedbdf52628d54e72b2fed2568dc6a18d8c5d8323970b681", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|efc0ffa58082bb1bfedbdf52628d54e72b2fed2568dc6a18d8c5d8323970b681"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-email-validator/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100247, "scanner": "repobility-docker", "fingerprint": "cf13d40f874e3acce22d7f6e4169d9d109b5a45e7c3852fd491c5f26dd396466", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf13d40f874e3acce22d7f6e4169d9d109b5a45e7c3852fd491c5f26dd396466"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-email-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100246, "scanner": "repobility-docker", "fingerprint": "8fc987983e38f83befde1e6ed7006b7ec43a58cb62c4904ca38580e4117b6084", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8fc987983e38f83befde1e6ed7006b7ec43a58cb62c4904ca38580e4117b6084"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-email-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100239, "scanner": "repobility-docker", "fingerprint": "9c9edabc308f3aa106815e41b21b14bc544cee207fa2840b2b2cd8df76881249", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c9edabc308f3aa106815e41b21b14bc544cee207fa2840b2b2cd8df76881249"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pytables/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100236, "scanner": "repobility-docker", "fingerprint": "7a11195edd75d913b0026d885a3787113c3c9c7448929e0b79b83a53f81be537", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a11195edd75d913b0026d885a3787113c3c9c7448929e0b79b83a53f81be537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyrsistent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100235, "scanner": "repobility-docker", "fingerprint": "84e6d3e842283275e63a521bdaf6f6185412512db85ee70713ee391f6a22c410", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|84e6d3e842283275e63a521bdaf6f6185412512db85ee70713ee391f6a22c410"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyrsistent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100232, "scanner": "repobility-docker", "fingerprint": "6989f1556b737780fe6cb6547a74e7a459aebbce0f431c85f7b950cadae1596f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6989f1556b737780fe6cb6547a74e7a459aebbce0f431c85f7b950cadae1596f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pypy3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100231, "scanner": "repobility-docker", "fingerprint": "b43f9901122c3729ae8d041ca035ef06d75271f45c48e1c590f1a05b31d9929e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b43f9901122c3729ae8d041ca035ef06d75271f45c48e1c590f1a05b31d9929e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pypy3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100228, "scanner": "repobility-docker", "fingerprint": "1504474cebcd41487608ee85c467310b8f12672dd002c50b4d3d8b90f7992eff", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1504474cebcd41487608ee85c467310b8f12672dd002c50b4d3d8b90f7992eff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyparsing/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100227, "scanner": "repobility-docker", "fingerprint": "e65eefe5cd8bccfdbbf2de343c6d2ffbe9aa3e627dc1cdafcab9e216e3c9ffa0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e65eefe5cd8bccfdbbf2de343c6d2ffbe9aa3e627dc1cdafcab9e216e3c9ffa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyparsing/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100224, "scanner": "repobility-docker", "fingerprint": "0cb840ab908ec8e82d2b27201de6ce09178aa573fdc619bc03db581d06899da2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cb840ab908ec8e82d2b27201de6ce09178aa573fdc619bc03db581d06899da2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyodbc/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100223, "scanner": "repobility-docker", "fingerprint": "619406143e993161697425ea79eb3364bdc39478b3c6143638d2c8a1d7e6db44", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|619406143e993161697425ea79eb3364bdc39478b3c6143638d2c8a1d7e6db44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyodbc/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100221, "scanner": "repobility-docker", "fingerprint": "74398400111a4e53b0a6b5febbaf7f5a3d54d5a92d7947ec26d94a151b57b12d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|74398400111a4e53b0a6b5febbaf7f5a3d54d5a92d7947ec26d94a151b57b12d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pynacl/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100216, "scanner": "repobility-docker", "fingerprint": "f99140b1d17d0c471502458ad81d02598336d8e4bf8387eb962017d2cf9d3f44", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f99140b1d17d0c471502458ad81d02598336d8e4bf8387eb962017d2cf9d3f44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100215, "scanner": "repobility-docker", "fingerprint": "9442f179bb6b2ebcaafb9897347bd623b1f4616de6a45b0334befe92fde41521", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9442f179bb6b2ebcaafb9897347bd623b1f4616de6a45b0334befe92fde41521"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100210, "scanner": "repobility-docker", "fingerprint": "931980af7822f5df555459c906e4d7d8cec9c41d3f2885937bc927f042e9ba18", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|931980af7822f5df555459c906e4d7d8cec9c41d3f2885937bc927f042e9ba18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pygments/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100204, "scanner": "repobility-docker", "fingerprint": "f3aaab9a5d34a8b216c61003f38e0ee7630376e3cc5ca93f1c12db348736e693", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f3aaab9a5d34a8b216c61003f38e0ee7630376e3cc5ca93f1c12db348736e693"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycups/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100201, "scanner": "repobility-docker", "fingerprint": "059cc37a1efe5f4b3dd0b80f34e90c70f248c37f57fd36692438d58c998db1cc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|059cc37a1efe5f4b3dd0b80f34e90c70f248c37f57fd36692438d58c998db1cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycryptodome/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100200, "scanner": "repobility-docker", "fingerprint": "3f762198fbbe321fa8d59b72da20aec7703961825569cc29576208a894e7f16b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3f762198fbbe321fa8d59b72da20aec7703961825569cc29576208a894e7f16b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pycryptodome/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100194, "scanner": "repobility-docker", "fingerprint": "83facefdce424ed35a9dea8ac20bac311943b29bbad894ec2bf62b1e54d51466", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|83facefdce424ed35a9dea8ac20bac311943b29bbad894ec2bf62b1e54d51466"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pybind11/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100193, "scanner": "repobility-docker", "fingerprint": "9869650a4272e6fe4c3848a85a21bfa6c16d5a71f74dfeda477cba0b267f793a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9869650a4272e6fe4c3848a85a21bfa6c16d5a71f74dfeda477cba0b267f793a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pybind11/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100189, "scanner": "repobility-docker", "fingerprint": "e1a016edad749a240cb15761b3587a07f6719824219b533008955de534f6f0c0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e1a016edad749a240cb15761b3587a07f6719824219b533008955de534f6f0c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100188, "scanner": "repobility-docker", "fingerprint": "7314b0e108af2c0c5bd379ab0e5ec50a62bb1cca2988b263e1216158c1ee19c5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7314b0e108af2c0c5bd379ab0e5ec50a62bb1cca2988b263e1216158c1ee19c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyasn1/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100185, "scanner": "repobility-docker", "fingerprint": "3afbcf00e76aa8a629c5ae85378d95919a44af80322480f7fcefaaf4b0dea59a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3afbcf00e76aa8a629c5ae85378d95919a44af80322480f7fcefaaf4b0dea59a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/py-serde/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100184, "scanner": "repobility-docker", "fingerprint": "0c46185c0487ad8a1c050a198b7872b3b5d71be156e91bbd66720d162f38e2e3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0c46185c0487ad8a1c050a198b7872b3b5d71be156e91bbd66720d162f38e2e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/py-serde/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100181, "scanner": "repobility-docker", "fingerprint": "2a459dd8f706e05b892e6d847dcfbd1e17ec3a3b7b1a81461d598d32e5189ba1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a459dd8f706e05b892e6d847dcfbd1e17ec3a3b7b1a81461d598d32e5189ba1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pupnp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100180, "scanner": "repobility-docker", "fingerprint": "8381524b7e994d7f699e7c341d099de9967f902a2a25511db7670100fa80c802", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8381524b7e994d7f699e7c341d099de9967f902a2a25511db7670100fa80c802"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pupnp/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100169, "scanner": "repobility-docker", "fingerprint": "21046ec5069507b495bd934fe3b2b4dc5d16dc5fdadf38704a3342caa8959055", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|21046ec5069507b495bd934fe3b2b4dc5d16dc5fdadf38704a3342caa8959055"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psycopg2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100164, "scanner": "repobility-docker", "fingerprint": "90ce8091f2e01c49d4672997b1e8d5cdc30258fae4d578316a552e1ea7b527df", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90ce8091f2e01c49d4672997b1e8d5cdc30258fae4d578316a552e1ea7b527df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psqlparse/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100163, "scanner": "repobility-docker", "fingerprint": "a8c0289106b33e32814f5ff16fb9a392a7570bc97a4883cbb1873d6be4d0d30e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a8c0289106b33e32814f5ff16fb9a392a7570bc97a4883cbb1873d6be4d0d30e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psqlparse/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100160, "scanner": "repobility-docker", "fingerprint": "f86fd6c6cf4583a617c867ba92719ab672e0d526c31996ff76060937d8df32bc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f86fd6c6cf4583a617c867ba92719ab672e0d526c31996ff76060937d8df32bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proxygen/Dockerfile"}, "region": {"startLine": 164}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100159, "scanner": "repobility-docker", "fingerprint": "77de9f91320df02d4d42bf3ea5e4bc1ed7d4f1498af8b486f5bc7c5849293f0d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77de9f91320df02d4d42bf3ea5e4bc1ed7d4f1498af8b486f5bc7c5849293f0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proxygen/Dockerfile"}, "region": {"startLine": 142}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100158, "scanner": "repobility-docker", "fingerprint": "b96fb75f11d10cb4cc1ba8cc749cdc7ff22ca675c543ff6ed6d95be66ca40bbb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b96fb75f11d10cb4cc1ba8cc749cdc7ff22ca675c543ff6ed6d95be66ca40bbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proxygen/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100157, "scanner": "repobility-docker", "fingerprint": "7d850170e80dde5ff204f19edf08cf9f3557b99f84e591f93b1d8819b4482b36", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7d850170e80dde5ff204f19edf08cf9f3557b99f84e591f93b1d8819b4482b36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proxygen/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100155, "scanner": "repobility-docker", "fingerprint": "3568ebd684ee53ede1e5128b5241694fe0cd7354f8d4b1def35988253e0c167f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3568ebd684ee53ede1e5128b5241694fe0cd7354f8d4b1def35988253e0c167f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proton-bridge/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100154, "scanner": "repobility-docker", "fingerprint": "2902a9ffbc2ebcbc1211474bc4d1f551577234ed1a86dba9ed68258854b5b7e0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2902a9ffbc2ebcbc1211474bc4d1f551577234ed1a86dba9ed68258854b5b7e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proton-bridge/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100149, "scanner": "repobility-docker", "fingerprint": "eeaeda16030c8f3938179c258a27ba1eff4e7f17c3dd347330930957fd835059", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eeaeda16030c8f3938179c258a27ba1eff4e7f17c3dd347330930957fd835059"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protoc-gen-validate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100148, "scanner": "repobility-docker", "fingerprint": "84d86da28ff2f87a8c43928aa25046ba045ccc69e1ed4aa6dc16e99c84bfe4ab", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|84d86da28ff2f87a8c43928aa25046ba045ccc69e1ed4aa6dc16e99c84bfe4ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protoc-gen-validate/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100140, "scanner": "repobility-docker", "fingerprint": "cc5342ace659225b13e37aed2975b79bfe8cffad1d18143c19bdd3088ec76bd2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cc5342ace659225b13e37aed2975b79bfe8cffad1d18143c19bdd3088ec76bd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-c/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100139, "scanner": "repobility-docker", "fingerprint": "9cbc0628f9d660028941890c5c0fb7b464d0f861180f201ae6d1addf603f434d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9cbc0628f9d660028941890c5c0fb7b464d0f861180f201ae6d1addf603f434d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/protobuf-c/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100134, "scanner": "repobility-docker", "fingerprint": "4cdd11709de2606b1ea297e067784743ff883b359695a0dec8296682bb73c20a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4cdd11709de2606b1ea297e067784743ff883b359695a0dec8296682bb73c20a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prost/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100133, "scanner": "repobility-docker", "fingerprint": "5ebdca694ef1602e6015b4e14d98f8863bfc017722aeb3a4b1326d6094201ffa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5ebdca694ef1602e6015b4e14d98f8863bfc017722aeb3a4b1326d6094201ffa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/prost/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100126, "scanner": "repobility-docker", "fingerprint": "abe14d48a39096ba72d8dde190045c103936e82150aa7d9a46ea631666f19fea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|abe14d48a39096ba72d8dde190045c103936e82150aa7d9a46ea631666f19fea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proj4/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100125, "scanner": "repobility-docker", "fingerprint": "144488661c243124c94ecb3a354d2878078ed0a7cdb4a3ab116afa1e563a1374", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|144488661c243124c94ecb3a354d2878078ed0a7cdb4a3ab116afa1e563a1374"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proj4/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100122, "scanner": "repobility-docker", "fingerprint": "2f282332bf7acbad2eb5220a10257d183161d346966fc4be06aa2b81fd575e67", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2f282332bf7acbad2eb5220a10257d183161d346966fc4be06aa2b81fd575e67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proftpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100121, "scanner": "repobility-docker", "fingerprint": "b03559570e39704604374f8e86f1cadf2d24082eebe22d69aac2337094af083d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b03559570e39704604374f8e86f1cadf2d24082eebe22d69aac2337094af083d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/proftpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100118, "scanner": "repobility-docker", "fingerprint": "d8ac3a8e8beb85341da87f0f26a15679c2dfc34f3953bd160ba0021f23ea6126", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8ac3a8e8beb85341da87f0f26a15679c2dfc34f3953bd160ba0021f23ea6126"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/presto/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100117, "scanner": "repobility-docker", "fingerprint": "3974c9b822200bb58df77fc97334d20e408889ba5797b105568d0a70ceff6943", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3974c9b822200bb58df77fc97334d20e408889ba5797b105568d0a70ceff6943"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/presto/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100114, "scanner": "repobility-docker", "fingerprint": "789d7e4a59f99875a09611ac5f113d241a13604d6da6422c9a216345e9310964", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|789d7e4a59f99875a09611ac5f113d241a13604d6da6422c9a216345e9310964"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powerdns/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100113, "scanner": "repobility-docker", "fingerprint": "9d26497d647471c3fe991fc01ae327d8bd5d2084bf6ae3c555eb2ba7d90cb74b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9d26497d647471c3fe991fc01ae327d8bd5d2084bf6ae3c555eb2ba7d90cb74b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powerdns/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100112, "scanner": "repobility-docker", "fingerprint": "7c5ad95600c5d0908203b7af1aeacec5c711098310705daa00af46408ae81301", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7c5ad95600c5d0908203b7af1aeacec5c711098310705daa00af46408ae81301"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/powerdns/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100109, "scanner": "repobility-docker", "fingerprint": "ee4f85eac55dafe5ceed40726b17f40c4d3327ce6b28c57631f46004fd1cd69b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee4f85eac55dafe5ceed40726b17f40c4d3327ce6b28c57631f46004fd1cd69b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postgresql/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100108, "scanner": "repobility-docker", "fingerprint": "22b8b598d7fe70a879175a0068b5c9893998524308ebdbd48f0d83f660748240", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|22b8b598d7fe70a879175a0068b5c9893998524308ebdbd48f0d83f660748240"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postgresql/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100105, "scanner": "repobility-docker", "fingerprint": "a27f524e3a98a33cbae0285b3d99eb62d5fa72f541447564f29bc020deb7eb87", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a27f524e3a98a33cbae0285b3d99eb62d5fa72f541447564f29bc020deb7eb87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postfix/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100104, "scanner": "repobility-docker", "fingerprint": "58ba6efcf06e300ee489a2d040e0a72e57ffe47f0c559b2ac99d4693fee173ad", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|58ba6efcf06e300ee489a2d040e0a72e57ffe47f0c559b2ac99d4693fee173ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/postfix/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100098, "scanner": "repobility-docker", "fingerprint": "7397625b07883dc9cd3ad0ec493fdcf2b235af908c2fcf6262dd9b19a3b257fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7397625b07883dc9cd3ad0ec493fdcf2b235af908c2fcf6262dd9b19a3b257fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poco/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100097, "scanner": "repobility-docker", "fingerprint": "ad37349214a0f84efba5c93a93d41848346f5c68f572e3591d3d6e5b8031e467", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ad37349214a0f84efba5c93a93d41848346f5c68f572e3591d3d6e5b8031e467"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/poco/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100094, "scanner": "repobility-docker", "fingerprint": "d7fe69360756cb808a96f67c333b026bc6723c5a4a877f52d682f5845ad791b1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7fe69360756cb808a96f67c333b026bc6723c5a4a877f52d682f5845ad791b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pngquant/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100093, "scanner": "repobility-docker", "fingerprint": "31c2321465418f495d9d9a9934e05969c94da3798c3b436164f19f6cf3b4dbc2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|31c2321465418f495d9d9a9934e05969c94da3798c3b436164f19f6cf3b4dbc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pngquant/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100087, "scanner": "repobility-docker", "fingerprint": "ce514a47d84d4768703682fea7d88311eaf2ef20420999b894b4613a637fbb03", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce514a47d84d4768703682fea7d88311eaf2ef20420999b894b4613a637fbb03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plan9port/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100086, "scanner": "repobility-docker", "fingerprint": "9359147d2b42af2e336ed3cc69322a2af1fc83a7456b30322cafce0fd61f83d0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9359147d2b42af2e336ed3cc69322a2af1fc83a7456b30322cafce0fd61f83d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/plan9port/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100083, "scanner": "repobility-docker", "fingerprint": "07a675687dbc834527156515a37a8a148c8b5ee9b7d13e5b8fafd0ad7194ebcb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07a675687dbc834527156515a37a8a148c8b5ee9b7d13e5b8fafd0ad7194ebcb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pjsip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100082, "scanner": "repobility-docker", "fingerprint": "cb7e454b33fd9e3edb2d8d31cbe71214cccae4dacd13ed8925a8465e28081148", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cb7e454b33fd9e3edb2d8d31cbe71214cccae4dacd13ed8925a8465e28081148"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pjsip/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100080, "scanner": "repobility-docker", "fingerprint": "0e4366bab2cb060a16c08de197c8e98093f738ad48c4ef0c9c87dca0e4dbba4c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e4366bab2cb060a16c08de197c8e98093f738ad48c4ef0c9c87dca0e4dbba4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pistache/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100079, "scanner": "repobility-docker", "fingerprint": "457cc536d6e4bee473ee3f1814ffcf607bb57b33d7187f78a1c59ed4d4a64c22", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|457cc536d6e4bee473ee3f1814ffcf607bb57b33d7187f78a1c59ed4d4a64c22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pistache/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100074, "scanner": "repobility-docker", "fingerprint": "df58bc752d1647921f5d925f1ce330a611b8aac00b120d786f7531fe013c7366", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df58bc752d1647921f5d925f1ce330a611b8aac00b120d786f7531fe013c7366"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 44}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100073, "scanner": "repobility-docker", "fingerprint": "8ffd40727b88ce377a90e31dde14852af96333a726b64909855b1362734e5112", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ffd40727b88ce377a90e31dde14852af96333a726b64909855b1362734e5112"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 44}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100072, "scanner": "repobility-docker", "fingerprint": "05da70d55e423808ef94b2b7e0e8aee2611dac2912ef1333d28881f42bb86c01", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|05da70d55e423808ef94b2b7e0e8aee2611dac2912ef1333d28881f42bb86c01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 39}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100071, "scanner": "repobility-docker", "fingerprint": "bc14563606669dde2123f738b5b7e998015dfa5c09d60517aadf033c77ee48f9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc14563606669dde2123f738b5b7e998015dfa5c09d60517aadf033c77ee48f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100070, "scanner": "repobility-docker", "fingerprint": "b135a9bfea0787c82614ac178ce26628965bf37089ba1c2d658b6eb5bfda172d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b135a9bfea0787c82614ac178ce26628965bf37089ba1c2d658b6eb5bfda172d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pillow/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100066, "scanner": "repobility-docker", "fingerprint": "4dc685a1ce7a5c616681adbbab1916cd64ccacb7d3db18e033b1b58d77c9319b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4dc685a1ce7a5c616681adbbab1916cd64ccacb7d3db18e033b1b58d77c9319b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pigweed/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100065, "scanner": "repobility-docker", "fingerprint": "e3c04de924d9b600bf174ff23ebfb0bfc5b98230ed5297442d32f5e8fa54c122", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e3c04de924d9b600bf174ff23ebfb0bfc5b98230ed5297442d32f5e8fa54c122"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pigweed/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100062, "scanner": "repobility-docker", "fingerprint": "7c4a0d80daa044f4f1155b8755a01a13857a7d0209e88294bae39deba92d1ba1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c4a0d80daa044f4f1155b8755a01a13857a7d0209e88294bae39deba92d1ba1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100061, "scanner": "repobility-docker", "fingerprint": "9ea8b430a9ed4734c6ad6e9a9e364ab26e082c848dc66cc3c7f05a2b7fb2aa00", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9ea8b430a9ed4734c6ad6e9a9e364ab26e082c848dc66cc3c7f05a2b7fb2aa00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100058, "scanner": "repobility-docker", "fingerprint": "3b7725a1c04137c75e53a753d58dde25ac63d9d554c3995ddd49f5eabc0fa5a5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3b7725a1c04137c75e53a753d58dde25ac63d9d554c3995ddd49f5eabc0fa5a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pidgin/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100055, "scanner": "repobility-docker", "fingerprint": "4e80ff91e78d31bc1abadc7cf31398b8fe308a38ce572fccbd89829b32198075", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e80ff91e78d31bc1abadc7cf31398b8fe308a38ce572fccbd89829b32198075"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/picotls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100054, "scanner": "repobility-docker", "fingerprint": "73298bea2de94521d762602d7d55fc7ad68ac7c0874a7d8927be8c405fa744a1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|73298bea2de94521d762602d7d55fc7ad68ac7c0874a7d8927be8c405fa744a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/picotls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100051, "scanner": "repobility-docker", "fingerprint": "a94d12d516ca546cf481184673f7fd8093a3046954147f5a1f4134418ac3459e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a94d12d516ca546cf481184673f7fd8093a3046954147f5a1f4134418ac3459e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/php/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100050, "scanner": "repobility-docker", "fingerprint": "f65b5ed2d2a1da25c220f5083694416053306519d7e9c48d14042cf4e26cc6a9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f65b5ed2d2a1da25c220f5083694416053306519d7e9c48d14042cf4e26cc6a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/php/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100047, "scanner": "repobility-docker", "fingerprint": "fd60b133a7be65916cfcf3289bac6ed2518a893b8b426240c969f9b48ea70e3e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fd60b133a7be65916cfcf3289bac6ed2518a893b8b426240c969f9b48ea70e3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/phosphor-host-ipmid/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100046, "scanner": "repobility-docker", "fingerprint": "fd691874e70d4e974abb3516a24e993043666642292bbfdedc675f6099403d91", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fd691874e70d4e974abb3516a24e993043666642292bbfdedc675f6099403d91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/phosphor-host-ipmid/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100042, "scanner": "repobility-docker", "fingerprint": "838c4cbcf8829d29d44849be8bd75fad63130c95c47a26977865fcddb353f7b0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|838c4cbcf8829d29d44849be8bd75fad63130c95c47a26977865fcddb353f7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pffft/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100041, "scanner": "repobility-docker", "fingerprint": "607a9a3da163cce05a0e4fd475a199f554f91c78fa5888c3e791e523b950468e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|607a9a3da163cce05a0e4fd475a199f554f91c78fa5888c3e791e523b950468e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pffft/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100040, "scanner": "repobility-docker", "fingerprint": "13a4afebdaf4f382a393d3d6ef5114337ecfd3fcb89c031d7f068fd3e29674cb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|13a4afebdaf4f382a393d3d6ef5114337ecfd3fcb89c031d7f068fd3e29674cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pffft/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 100030, "scanner": "repobility-docker", "fingerprint": "5c34b9356bba612039003ba098078d9c64d18b5e2439ec034f7edd342b0bfb0d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5c34b9356bba612039003ba098078d9c64d18b5e2439ec034f7edd342b0bfb0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pem/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100029, "scanner": "repobility-docker", "fingerprint": "841164767816adb3f275d603d44b7617fe3b08fe068ee0643b071c95f312cb97", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|841164767816adb3f275d603d44b7617fe3b08fe068ee0643b071c95f312cb97"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pem/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100028, "scanner": "repobility-docker", "fingerprint": "45dd10b49a34c3395f8d0f59da2e7b95686bd64e496d9b8e2e9aa9d92ef180fa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|45dd10b49a34c3395f8d0f59da2e7b95686bd64e496d9b8e2e9aa9d92ef180fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pem/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100018, "scanner": "repobility-docker", "fingerprint": "bb6c6ded7075782d307b176ecb761884aa59c91205c3f285bf7311afab4e4d8c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bb6c6ded7075782d307b176ecb761884aa59c91205c3f285bf7311afab4e4d8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdfbox/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100016, "scanner": "repobility-docker", "fingerprint": "3596b3eb59edabc9c029a211ae6d5a52d2571ea0e95debb4895a07c2b5c25fdf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3596b3eb59edabc9c029a211ae6d5a52d2571ea0e95debb4895a07c2b5c25fdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdf-js/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100015, "scanner": "repobility-docker", "fingerprint": "691f5bff0f4875bca7c205fcde431f3a71db2532cf3db0cc26310261f862a575", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|691f5bff0f4875bca7c205fcde431f3a71db2532cf3db0cc26310261f862a575"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pdf-js/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100012, "scanner": "repobility-docker", "fingerprint": "06cc60bf4763ce2b0028f183e7d102dd95f52f118ee74900edad53448884c2d0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|06cc60bf4763ce2b0028f183e7d102dd95f52f118ee74900edad53448884c2d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcre2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100011, "scanner": "repobility-docker", "fingerprint": "8037fed8ccbd2868254ad635eb0173972fe1015d144889ac3caa2ce37f862595", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8037fed8ccbd2868254ad635eb0173972fe1015d144889ac3caa2ce37f862595"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcre2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100008, "scanner": "repobility-docker", "fingerprint": "5479bd124135356942025dae820212cbac03fe3f24098b838a4dd09ff141f992", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5479bd124135356942025dae820212cbac03fe3f24098b838a4dd09ff141f992"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcl/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100007, "scanner": "repobility-docker", "fingerprint": "d45b573c048ae21ddd049383f8565971f2740b16b46a6885c508a06e89ff69fc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d45b573c048ae21ddd049383f8565971f2740b16b46a6885c508a06e89ff69fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcl/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100006, "scanner": "repobility-docker", "fingerprint": "c555dc3dbf70f8edb59a7bf6b68e9f32b12c788b7eceac20d0e4b7a85f377b6c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c555dc3dbf70f8edb59a7bf6b68e9f32b12c788b7eceac20d0e4b7a85f377b6c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100005, "scanner": "repobility-docker", "fingerprint": "038c5e8cba2434c428926948f5ae9591dd40d43675e5c52123c123e2c0b1fcaa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|038c5e8cba2434c428926948f5ae9591dd40d43675e5c52123c123e2c0b1fcaa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 100003, "scanner": "repobility-docker", "fingerprint": "169f8ace71bb78b37c8a95771b5f02c3d37bc5351eaceaa0ba688df0d9000cf9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|169f8ace71bb78b37c8a95771b5f02c3d37bc5351eaceaa0ba688df0d9000cf9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcapplusplus/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 100002, "scanner": "repobility-docker", "fingerprint": "63c200ae58b288e024727f94138cc5dad19720816903e354c486bb97f8889056", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|63c200ae58b288e024727f94138cc5dad19720816903e354c486bb97f8889056"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pcapplusplus/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99987, "scanner": "repobility-docker", "fingerprint": "02aaa3309d1987bbf19c902daa1c4e989eb3081cd190f381b0f7aa7f2e911ee3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02aaa3309d1987bbf19c902daa1c4e989eb3081cd190f381b0f7aa7f2e911ee3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/paramiko/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99986, "scanner": "repobility-docker", "fingerprint": "688d3cf9dccbfe7773249629ca1d2a37daa20aa16eb992733e9e901b07426d2a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|688d3cf9dccbfe7773249629ca1d2a37daa20aa16eb992733e9e901b07426d2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/paramiko/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99983, "scanner": "repobility-docker", "fingerprint": "8ee54e397faedce33e1928c7f51d2991b3e7851e6df7b64f95c53a15c337716b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ee54e397faedce33e1928c7f51d2991b3e7851e6df7b64f95c53a15c337716b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99982, "scanner": "repobility-docker", "fingerprint": "ceefb301a03914413e5af498db26b9d4825ec55d62ae0a6fd38f721013a6f297", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ceefb301a03914413e5af498db26b9d4825ec55d62ae0a6fd38f721013a6f297"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99981, "scanner": "repobility-docker", "fingerprint": "d0bc81c6eeb63b899b7c6a0d40048087fc9c81a748a90cfb2164909169f8fc18", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d0bc81c6eeb63b899b7c6a0d40048087fc9c81a748a90cfb2164909169f8fc18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99980, "scanner": "repobility-docker", "fingerprint": "bfe3cf8fb8efe03b6f4d3fc1cdb4489f471bb90f26772c2ca148660101e20b22", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bfe3cf8fb8efe03b6f4d3fc1cdb4489f471bb90f26772c2ca148660101e20b22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99979, "scanner": "repobility-docker", "fingerprint": "1b9b42451996e0b9f32072e9d747f577d7c810ea0b1ee812a4b75109134ca3a9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b9b42451996e0b9f32072e9d747f577d7c810ea0b1ee812a4b75109134ca3a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99978, "scanner": "repobility-docker", "fingerprint": "f23a11559292b6f09af7e93d5922598712eef7935bee855d4fb2cb48a39bc8cd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f23a11559292b6f09af7e93d5922598712eef7935bee855d4fb2cb48a39bc8cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pandas/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99972, "scanner": "repobility-docker", "fingerprint": "1edbdcdb8055019782c2fc8bcb5aa7d97dfcdf9ecc0a52f8866fc88db9e39b89", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1edbdcdb8055019782c2fc8bcb5aa7d97dfcdf9ecc0a52f8866fc88db9e39b89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pacemaker/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99971, "scanner": "repobility-docker", "fingerprint": "95c6736d3744425728b903ba0aa02d85dd332b74c0f2b30de2b35be770b89058", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95c6736d3744425728b903ba0aa02d85dd332b74c0f2b30de2b35be770b89058"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pacemaker/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99970, "scanner": "repobility-docker", "fingerprint": "def9d49eb1574d85c021347f56b4a842dc9b950abeaa677fada99c90f9b7137d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|def9d49eb1574d85c021347f56b4a842dc9b950abeaa677fada99c90f9b7137d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pacemaker/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99965, "scanner": "repobility-docker", "fingerprint": "f96754d74290b1260426a6a118bde0df28b818eade7103f321ebeac5b370d283", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f96754d74290b1260426a6a118bde0df28b818eade7103f321ebeac5b370d283"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p11-kit/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99964, "scanner": "repobility-docker", "fingerprint": "1cab7736505be34b4f8b32cea25607471285bc3027c300f768b53e08052e1592", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1cab7736505be34b4f8b32cea25607471285bc3027c300f768b53e08052e1592"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p11-kit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99963, "scanner": "repobility-docker", "fingerprint": "16f997e18b2d998ac2d13295c008b1cdab3b6192e614aefbea0bb6d42158255a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|16f997e18b2d998ac2d13295c008b1cdab3b6192e614aefbea0bb6d42158255a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/p11-kit/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99956, "scanner": "repobility-docker", "fingerprint": "8179442da88203efb4ff23a589d876841be6f94d18102d6d710e7d651bd3478e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8179442da88203efb4ff23a589d876841be6f94d18102d6d710e7d651bd3478e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ots/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99955, "scanner": "repobility-docker", "fingerprint": "cf737600c39d7b6962b42cde47c7245eebebf5bbb1276e791a433a45666d517c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cf737600c39d7b6962b42cde47c7245eebebf5bbb1276e791a433a45666d517c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ots/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99952, "scanner": "repobility-docker", "fingerprint": "fa45b4162e381b95871a91ded9685f465d520f0aeb0101101000a75bc03a19b7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fa45b4162e381b95871a91ded9685f465d520f0aeb0101101000a75bc03a19b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ostree/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99951, "scanner": "repobility-docker", "fingerprint": "cd0c90b645e564795465c70231a178bbd3022bca6ead382e3826134cea511ec7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cd0c90b645e564795465c70231a178bbd3022bca6ead382e3826134cea511ec7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ostree/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99947, "scanner": "repobility-docker", "fingerprint": "e7ac7d27a8ee5d7cd6e05213854771e417121a15afdd069b207185ddb7f01130", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e7ac7d27a8ee5d7cd6e05213854771e417121a15afdd069b207185ddb7f01130"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oss-fuzz-example/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99946, "scanner": "repobility-docker", "fingerprint": "bd346f4e6652237a0f9767817bbf8fc3c1023f681ef54c613812a50e8f18e483", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bd346f4e6652237a0f9767817bbf8fc3c1023f681ef54c613812a50e8f18e483"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oss-fuzz-example/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99943, "scanner": "repobility-docker", "fingerprint": "5fb205f2b235ed9950c41f1c8433f3f98d65ccf56f7828909ec818719343d8f4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5fb205f2b235ed9950c41f1c8433f3f98d65ccf56f7828909ec818719343d8f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/osquery/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99936, "scanner": "repobility-docker", "fingerprint": "a6adabf13ac6e620933deb7bd467c7cf388e6b4201f751fff6644f3a1595d68e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a6adabf13ac6e620933deb7bd467c7cf388e6b4201f751fff6644f3a1595d68e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/orjson/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99935, "scanner": "repobility-docker", "fingerprint": "86942a51fcb5031a5f3ff26f414e25a4d8fc524b5a8ec964b61336d225fa74fa", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|86942a51fcb5031a5f3ff26f414e25a4d8fc524b5a8ec964b61336d225fa74fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/orjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99934, "scanner": "repobility-docker", "fingerprint": "e30418ea859de1ba1193e2870da9ccea671c364d4b020d088536f3d0efd3c46a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e30418ea859de1ba1193e2870da9ccea671c364d4b020d088536f3d0efd3c46a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/orjson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99932, "scanner": "repobility-docker", "fingerprint": "d1c9806036918f2d8cda6c2ee673090e94f7307b4ba343157881f9e21b84dcac", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d1c9806036918f2d8cda6c2ee673090e94f7307b4ba343157881f9e21b84dcac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oracle-py-cx/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99931, "scanner": "repobility-docker", "fingerprint": "c5b701ab6b55f6a79a8a6119695d9c237515fb41d4133792aa7d7ff88be48237", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5b701ab6b55f6a79a8a6119695d9c237515fb41d4133792aa7d7ff88be48237"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oracle-py-cx/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99928, "scanner": "repobility-docker", "fingerprint": "cccb3410f03af80a02acde5839c35f77071109491caaffae504707b7f8557b40", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cccb3410f03af80a02acde5839c35f77071109491caaffae504707b7f8557b40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opusfile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99927, "scanner": "repobility-docker", "fingerprint": "d763291bd7bde76a60d56d4904cca3ba6c7c05d486c1be09019f45c377ac9718", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d763291bd7bde76a60d56d4904cca3ba6c7c05d486c1be09019f45c377ac9718"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opusfile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99924, "scanner": "repobility-docker", "fingerprint": "35c7ba31856fe6eed7d97d8345c11866f14c42463a33667b769db60c5542ed10", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35c7ba31856fe6eed7d97d8345c11866f14c42463a33667b769db60c5542ed10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99923, "scanner": "repobility-docker", "fingerprint": "2a176b064a95d284a56ca1caa2d721944f990fc05598e6ed86e7a11be62ecd5c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2a176b064a95d284a56ca1caa2d721944f990fc05598e6ed86e7a11be62ecd5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99916, "scanner": "repobility-docker", "fingerprint": "0e1b26a2832bc6f9a430cd72c27b09926805840588436388399febda6f7a41b8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e1b26a2832bc6f9a430cd72c27b09926805840588436388399febda6f7a41b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openweave/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99915, "scanner": "repobility-docker", "fingerprint": "9c4c6b66a46ec8d3e7daf87e5ad5a080b837732ad43a3c68eb8f791ba29ec207", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9c4c6b66a46ec8d3e7daf87e5ad5a080b837732ad43a3c68eb8f791ba29ec207"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openweave/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99912, "scanner": "repobility-docker", "fingerprint": "321ddbd30f2f89877acf59f6c549a39f0daff45543e56cbc3452ac25e5f3a332", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|321ddbd30f2f89877acf59f6c549a39f0daff45543e56cbc3452ac25e5f3a332"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvswitch/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99911, "scanner": "repobility-docker", "fingerprint": "b8345accbfb51d0f95f32875cdb196f7fc2ec18da4a2e9975e355f491fda757f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b8345accbfb51d0f95f32875cdb196f7fc2ec18da4a2e9975e355f491fda757f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvswitch/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99908, "scanner": "repobility-docker", "fingerprint": "62914ca9c7fbaabd52656786dc42376b4ef3997243fa987f567d383007277d42", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62914ca9c7fbaabd52656786dc42376b4ef3997243fa987f567d383007277d42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvpn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99907, "scanner": "repobility-docker", "fingerprint": "ffebf7f96aec7d23996bc5e0877a1c45b635dcf57777d30f00a465774e361e89", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ffebf7f96aec7d23996bc5e0877a1c45b635dcf57777d30f00a465774e361e89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openvpn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99904, "scanner": "repobility-docker", "fingerprint": "dccef9e4a9ea264cb35b109b9930897685aa34692795c68dc0e73276f0844c9b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dccef9e4a9ea264cb35b109b9930897685aa34692795c68dc0e73276f0844c9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openthread/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99903, "scanner": "repobility-docker", "fingerprint": "1507076dd864404d4449739b2437d9e08060a3e33d5f0109199fc7915c9f6e87", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1507076dd864404d4449739b2437d9e08060a3e33d5f0109199fc7915c9f6e87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openthread/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99894, "scanner": "repobility-docker", "fingerprint": "61f4ae5678d72462d60c01b984c877fc98736305962dddb1c7cc1a8786205722", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|61f4ae5678d72462d60c01b984c877fc98736305962dddb1c7cc1a8786205722"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99893, "scanner": "repobility-docker", "fingerprint": "5f73a44cb41df61aff7e9b967ccf520c360b45b2ca3029fafb5a2c2297a83380", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5f73a44cb41df61aff7e9b967ccf520c360b45b2ca3029fafb5a2c2297a83380"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99890, "scanner": "repobility-docker", "fingerprint": "83bc4dc45ebb047d434e9351e2089bd0a035caaf745ac1d8daa166a54e0c8ad6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|83bc4dc45ebb047d434e9351e2089bd0a035caaf745ac1d8daa166a54e0c8ad6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssh/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99889, "scanner": "repobility-docker", "fingerprint": "c9624f5ce97d6ca71aa3a4f01f88d834c36d17a6c71b2d6576069b9aea6c98e4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9624f5ce97d6ca71aa3a4f01f88d834c36d17a6c71b2d6576069b9aea6c98e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99888, "scanner": "repobility-docker", "fingerprint": "fddc7608a4b37bee1aaeceda54d1246be3e78bbd565c139e76cbfd0abe17ff0c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fddc7608a4b37bee1aaeceda54d1246be3e78bbd565c139e76cbfd0abe17ff0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99885, "scanner": "repobility-docker", "fingerprint": "6d46303068d66adc9a02555b74731a203cd9e31fb7dccfc3c3ef4a2e68c6d559", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6d46303068d66adc9a02555b74731a203cd9e31fb7dccfc3c3ef4a2e68c6d559"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99884, "scanner": "repobility-docker", "fingerprint": "c0975d633c1e18d58e41eca4bc99421f178f52ff1b52455ff070b7c7ce39e300", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c0975d633c1e18d58e41eca4bc99421f178f52ff1b52455ff070b7c7ce39e300"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensk/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99881, "scanner": "repobility-docker", "fingerprint": "1488bc66e08a82326c0dbc5acd527ff831a1b0e1ef47ef8f98c240977f56e15e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1488bc66e08a82326c0dbc5acd527ff831a1b0e1ef47ef8f98c240977f56e15e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensips/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99880, "scanner": "repobility-docker", "fingerprint": "4689db4dcc5c33be495540c6c23837dbc431de1ae895746ad8ddae99fd1919ed", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4689db4dcc5c33be495540c6c23837dbc431de1ae895746ad8ddae99fd1919ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensips/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99877, "scanner": "repobility-docker", "fingerprint": "0f1bbc985404937989da0ad98224ad58441f1d02faa65fea5cff65739efff3a3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f1bbc985404937989da0ad98224ad58441f1d02faa65fea5cff65739efff3a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99876, "scanner": "repobility-docker", "fingerprint": "2fba499e56ed06dc475eb8c9030456ebf6343db15c545123f0de3761e6835739", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2fba499e56ed06dc475eb8c9030456ebf6343db15c545123f0de3761e6835739"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opensc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99873, "scanner": "repobility-docker", "fingerprint": "abd804e0162da59a2960d30744b9a0408c5e5bc92da5daef504f7ba745c9e940", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|abd804e0162da59a2960d30744b9a0408c5e5bc92da5daef504f7ba745c9e940"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openpyxl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99870, "scanner": "repobility-docker", "fingerprint": "a3d65997b9aa0a3cea60cd5ea5ce4efd1a98f72736c4751cba6736a69dcb15cb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a3d65997b9aa0a3cea60cd5ea5ce4efd1a98f72736c4751cba6736a69dcb15cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opennavsurf-bag/Dockerfile"}, "region": {"startLine": 70}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99869, "scanner": "repobility-docker", "fingerprint": "96cb6083aee2e979195f09cdd2e83fbc728b1db03b82e1c1fcc3004f9b9d88d8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96cb6083aee2e979195f09cdd2e83fbc728b1db03b82e1c1fcc3004f9b9d88d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opennavsurf-bag/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99868, "scanner": "repobility-docker", "fingerprint": "27809eb9a62aa878471c382f5804db4504a595a2ab42f6a0405c9aad4f25179c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|27809eb9a62aa878471c382f5804db4504a595a2ab42f6a0405c9aad4f25179c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opennavsurf-bag/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99863, "scanner": "repobility-docker", "fingerprint": "3a19d0dffea1a83e0940bfeec0b90d31f6f2a4d2d8e9bcfbee0d6049626bcc56", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a19d0dffea1a83e0940bfeec0b90d31f6f2a4d2d8e9bcfbee0d6049626bcc56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjph/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99862, "scanner": "repobility-docker", "fingerprint": "2655f971fb2b87e1696ce761ba9361cf40987015887454b8924b478f23375270", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2655f971fb2b87e1696ce761ba9361cf40987015887454b8924b478f23375270"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjph/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99859, "scanner": "repobility-docker", "fingerprint": "df29ac65fcfca54769c214266d88e07d574fe00d884a1bbd91f98d7006d951a1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|df29ac65fcfca54769c214266d88e07d574fe00d884a1bbd91f98d7006d951a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjpeg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99858, "scanner": "repobility-docker", "fingerprint": "b5a7724fc4512a8c2684f0bf128f7faa9b7835e8797f863ab5d1ea39e372d397", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b5a7724fc4512a8c2684f0bf128f7faa9b7835e8797f863ab5d1ea39e372d397"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openjpeg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99855, "scanner": "repobility-docker", "fingerprint": "5d6841617ed90e05e818fcc683f287c6aab2ce39c8d8562a2511307859dbaa48", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5d6841617ed90e05e818fcc683f287c6aab2ce39c8d8562a2511307859dbaa48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openh264/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99854, "scanner": "repobility-docker", "fingerprint": "a796afc3605a60b412eda5b59dd17780707f66b91a364a0940cffd6788fecd3b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a796afc3605a60b412eda5b59dd17780707f66b91a364a0940cffd6788fecd3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openh264/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99853, "scanner": "repobility-docker", "fingerprint": "8d7b25ee1998c17694d0aadd9047d5532bb34dec0b2c249486d07f69a26139cb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8d7b25ee1998c17694d0aadd9047d5532bb34dec0b2c249486d07f69a26139cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openh264/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99848, "scanner": "repobility-docker", "fingerprint": "982bda6b021d0e5d593be932c550a5f7394a7d3622011bca1e670503d16b2619", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|982bda6b021d0e5d593be932c550a5f7394a7d3622011bca1e670503d16b2619"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openexr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99847, "scanner": "repobility-docker", "fingerprint": "2e76976b03287f8500bf86bd40dba81f204f79d305241eea140da33264b2e08b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2e76976b03287f8500bf86bd40dba81f204f79d305241eea140da33264b2e08b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openexr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99844, "scanner": "repobility-docker", "fingerprint": "bd66823b07afe792610be67b5b7f433aaa740ff3b12c61b3bb28c2cf270a6abe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bd66823b07afe792610be67b5b7f433aaa740ff3b12c61b3bb28c2cf270a6abe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendnp3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99843, "scanner": "repobility-docker", "fingerprint": "3db6c3605a75820169852e8b4cf1271c239edcce06fa4000da6e86c26b992a8d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3db6c3605a75820169852e8b4cf1271c239edcce06fa4000da6e86c26b992a8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opendnp3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99838, "scanner": "repobility-docker", "fingerprint": "691a351c75a01ee77a0fcdf6a8c7219d8a6d737fb42b271da311584ea0f0d38d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|691a351c75a01ee77a0fcdf6a8c7219d8a6d737fb42b271da311584ea0f0d38d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencv/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99837, "scanner": "repobility-docker", "fingerprint": "5042cb3c7adf65488ab599855c21fb921662dc34d208f19801e2dad505615d51", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5042cb3c7adf65488ab599855c21fb921662dc34d208f19801e2dad505615d51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencv/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99831, "scanner": "repobility-docker", "fingerprint": "08712172ddb310d137292e063c8bf63fd760d0bc9196d10dbc5cb8199d1cb394", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08712172ddb310d137292e063c8bf63fd760d0bc9196d10dbc5cb8199d1cb394"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-java/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99830, "scanner": "repobility-docker", "fingerprint": "f320e17f47f85035d50d9f8f8b36250328a22357dac9f08e278c9e1a1b7c39f4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f320e17f47f85035d50d9f8f8b36250328a22357dac9f08e278c9e1a1b7c39f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-java/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99823, "scanner": "repobility-docker", "fingerprint": "1f62b6e28f74a11ef64a68fdaf244125a6bcea7e419f49ba201de55949f7a5f5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1f62b6e28f74a11ef64a68fdaf244125a6bcea7e419f49ba201de55949f7a5f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openbabel/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99822, "scanner": "repobility-docker", "fingerprint": "7ec142dee37f2015474e7b787b58a5e01e5f4a0e6a4f06fa315d58fe402a1a8d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7ec142dee37f2015474e7b787b58a5e01e5f4a0e6a4f06fa315d58fe402a1a8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/openbabel/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99817, "scanner": "repobility-docker", "fingerprint": "827fb6d63c0c0f3732d56d6e492ad0dbfd859420c54fe8870606f5fc37978f72", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|827fb6d63c0c0f3732d56d6e492ad0dbfd859420c54fe8870606f5fc37978f72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open62541/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99816, "scanner": "repobility-docker", "fingerprint": "926c0195a3b97079cac7a75a132ed04325f8db1f5032ce2bed30a148794d875c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|926c0195a3b97079cac7a75a132ed04325f8db1f5032ce2bed30a148794d875c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open62541/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99814, "scanner": "repobility-docker", "fingerprint": "b075ec5e81ff89d791c87442db5c00891140a48041d47bd0e5a137bce0157ac8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b075ec5e81ff89d791c87442db5c00891140a48041d47bd0e5a137bce0157ac8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/open5gs/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99809, "scanner": "repobility-docker", "fingerprint": "2ce3cf729ea0ae5e6b7cb366f3eecaf2e258fcd7e883d03fd48fe64f446d5917", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2ce3cf729ea0ae5e6b7cb366f3eecaf2e258fcd7e883d03fd48fe64f446d5917"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/onednn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99808, "scanner": "repobility-docker", "fingerprint": "bc2cd6de8b6bb0cbf90321ced3f0a7063695941a0c48fa99ad8ca4342510cca6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bc2cd6de8b6bb0cbf90321ced3f0a7063695941a0c48fa99ad8ca4342510cca6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/onednn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99805, "scanner": "repobility-docker", "fingerprint": "373e4c9152bd9c9ad02b25f0a6758a153c5b4e0b01e5ab6ce6d463291c49827a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|373e4c9152bd9c9ad02b25f0a6758a153c5b4e0b01e5ab6ce6d463291c49827a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/olefile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99804, "scanner": "repobility-docker", "fingerprint": "aa2516a2c01c68e4622ca9e62d0a39a97dea370330d6105e4200fd667831a09e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aa2516a2c01c68e4622ca9e62d0a39a97dea370330d6105e4200fd667831a09e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/olefile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99797, "scanner": "repobility-docker", "fingerprint": "e0beb6f91fa9b611c76fa016d1abce3d64a32a0d7a2bba8bbefdb14c0db961fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0beb6f91fa9b611c76fa016d1abce3d64a32a0d7a2bba8bbefdb14c0db961fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ogre/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99796, "scanner": "repobility-docker", "fingerprint": "ccf94a858b63c164d67ecf4d1e788f14bcb188458de8514cd2da131c8a207a1e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ccf94a858b63c164d67ecf4d1e788f14bcb188458de8514cd2da131c8a207a1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ogre/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99793, "scanner": "repobility-docker", "fingerprint": "12b4297995091e9415f04f3d1536f720a9a324227955c07425744a5fc5b8e952", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|12b4297995091e9415f04f3d1536f720a9a324227955c07425744a5fc5b8e952"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauthlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99792, "scanner": "repobility-docker", "fingerprint": "11d891543b2c8af594f6beb5ce6f5b6900328cafaa5b8e3e19de6b329818ab36", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|11d891543b2c8af594f6beb5ce6f5b6900328cafaa5b8e3e19de6b329818ab36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oauthlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99787, "scanner": "repobility-docker", "fingerprint": "25a77936c8bf100837143e55ac303f42341c95927c79fc0472c96113fd90e076", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25a77936c8bf100837143e55ac303f42341c95927c79fc0472c96113fd90e076"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oatpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99786, "scanner": "repobility-docker", "fingerprint": "eab2829ffe5d4e7f5df27c58b4fea01af2352a34cbac677597b24b4b7b690d33", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eab2829ffe5d4e7f5df27c58b4fea01af2352a34cbac677597b24b4b7b690d33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oatpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99781, "scanner": "repobility-docker", "fingerprint": "5c14259c9dfb2a97489129432e1473b20db6dad919421f91938c7156393827e0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5c14259c9dfb2a97489129432e1473b20db6dad919421f91938c7156393827e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numpy/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99780, "scanner": "repobility-docker", "fingerprint": "3c002a2ce8da19444ebc68ad27ac9faa5ced1266f5df4011d4c69422bfcff02e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3c002a2ce8da19444ebc68ad27ac9faa5ced1266f5df4011d4c69422bfcff02e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numpy/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99779, "scanner": "repobility-docker", "fingerprint": "ba0ff450b79dbc0b7bf57a4e89ef62553980f3bf520e88e1da798ebc7440b88e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ba0ff450b79dbc0b7bf57a4e89ef62553980f3bf520e88e1da798ebc7440b88e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numpy/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99774, "scanner": "repobility-docker", "fingerprint": "a9e538a942d25481856060ffee7f347acdfa11a7448c6226b815b8d4dd18e044", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a9e538a942d25481856060ffee7f347acdfa11a7448c6226b815b8d4dd18e044"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numactl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99773, "scanner": "repobility-docker", "fingerprint": "cd8bf29871d3af7e4d6e63079af7a93c445339d0111da91d567706bff26e8c98", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cd8bf29871d3af7e4d6e63079af7a93c445339d0111da91d567706bff26e8c98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/numactl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99770, "scanner": "repobility-docker", "fingerprint": "73a7f02bb98a89d659cb127d4e4dc01f8cbd45f54c7847759e09298a44640d9f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73a7f02bb98a89d659cb127d4e4dc01f8cbd45f54c7847759e09298a44640d9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/num-bigint/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99769, "scanner": "repobility-docker", "fingerprint": "91993abee5d45023d1da0f72223e6982666784c15087752cd5d895f1aa21054b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|91993abee5d45023d1da0f72223e6982666784c15087752cd5d895f1aa21054b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/num-bigint/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99766, "scanner": "repobility-docker", "fingerprint": "43e191cbb71a1a527e61ca6abe12c3999c86d677c889de8553fe2c82e7067022", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43e191cbb71a1a527e61ca6abe12c3999c86d677c889de8553fe2c82e7067022"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntpsec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99765, "scanner": "repobility-docker", "fingerprint": "ab6629a60255f7c3aead898ae06d9a2db9118c56a19b8fc091dd32c1a712a231", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ab6629a60255f7c3aead898ae06d9a2db9118c56a19b8fc091dd32c1a712a231"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntpsec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99763, "scanner": "repobility-docker", "fingerprint": "e1c754b1958655fd77e60e13933a5dff36553aa828c214bf8e4dbf66af51f978", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e1c754b1958655fd77e60e13933a5dff36553aa828c214bf8e4dbf66af51f978"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99762, "scanner": "repobility-docker", "fingerprint": "f89a88bc22e2e8b43a9e4740dd7e22c5736eb981e5bc7b5b61080564c10d188f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f89a88bc22e2e8b43a9e4740dd7e22c5736eb981e5bc7b5b61080564c10d188f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99755, "scanner": "repobility-docker", "fingerprint": "991f92a227514bed710272abf0c5163e5ffb3324200d383ecab7741716937b98", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|991f92a227514bed710272abf0c5163e5ffb3324200d383ecab7741716937b98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99754, "scanner": "repobility-docker", "fingerprint": "f050d652a0284bb76b184bad6bf533665b33d4e5f239ee8e9ee5958bd1798cf5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f050d652a0284bb76b184bad6bf533665b33d4e5f239ee8e9ee5958bd1798cf5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99747, "scanner": "repobility-docker", "fingerprint": "f76b3965301378ae2bbccf50d7dcf3d0ad2658f49b58caa9841bdca1abeb91ea", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f76b3965301378ae2bbccf50d7dcf3d0ad2658f49b58caa9841bdca1abeb91ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nss/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99746, "scanner": "repobility-docker", "fingerprint": "3186e68ef1905da86d9faed342d385b752e42b400781a8665fada44c0e031138", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3186e68ef1905da86d9faed342d385b752e42b400781a8665fada44c0e031138"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nss/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99736, "scanner": "repobility-docker", "fingerprint": "ecfcacb44ca69393933075999535612cf4ed422f2f4914d5a728ec8fd171ec0c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ecfcacb44ca69393933075999535612cf4ed422f2f4914d5a728ec8fd171ec0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nodejs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99735, "scanner": "repobility-docker", "fingerprint": "48098e6032bd1ed1d9d199208b21c2195400308236e13b7a0c3d5bdb98d3c1d0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|48098e6032bd1ed1d9d199208b21c2195400308236e13b7a0c3d5bdb98d3c1d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nodejs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99730, "scanner": "repobility-docker", "fingerprint": "55fefd52f48bf0be3f1d2776115c254e8416a72689693cdeb51ce82d60c39b40", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55fefd52f48bf0be3f1d2776115c254e8416a72689693cdeb51ce82d60c39b40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/njs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99729, "scanner": "repobility-docker", "fingerprint": "bc9b19f06b42cedcc866bbca39ede08e4f02b29520a8fe2d9e3b507d3a545917", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bc9b19f06b42cedcc866bbca39ede08e4f02b29520a8fe2d9e3b507d3a545917"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/njs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99726, "scanner": "repobility-docker", "fingerprint": "4d694bc8b794f49c0e29f2147832780c8411f9448b24fb53f9f4da139bac1fd7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d694bc8b794f49c0e29f2147832780c8411f9448b24fb53f9f4da139bac1fd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ninja/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99725, "scanner": "repobility-docker", "fingerprint": "64e732ca42a8aeea4e4e6771130caf080b4b0b5d6cb5fa0af24230333bc89a3a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|64e732ca42a8aeea4e4e6771130caf080b4b0b5d6cb5fa0af24230333bc89a3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ninja/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99722, "scanner": "repobility-docker", "fingerprint": "847fa12dc65afe22da537037bb18e9d3430ce3a5bd3d950b1d17609b6654fd56", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|847fa12dc65afe22da537037bb18e9d3430ce3a5bd3d950b1d17609b6654fd56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nimbus-jwt/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99720, "scanner": "repobility-docker", "fingerprint": "e3428d89efea573d4e572ecd42e80a8a8fae2ada90e765ef123a39f425dbe49b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e3428d89efea573d4e572ecd42e80a8a8fae2ada90e765ef123a39f425dbe49b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing-x/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99719, "scanner": "repobility-docker", "fingerprint": "191ab40b940c30ddc2c3f8eccd314ab0879908950b0b462db7acf709daa200a4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|191ab40b940c30ddc2c3f8eccd314ab0879908950b0b462db7acf709daa200a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing-x/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99716, "scanner": "repobility-docker", "fingerprint": "bf74e7622ec7ea3a47c097fb0f78ab44fdd0c580d17cd9e015892bfc37e8ef73", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf74e7622ec7ea3a47c097fb0f78ab44fdd0c580d17cd9e015892bfc37e8ef73"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99715, "scanner": "repobility-docker", "fingerprint": "e302e6d31f283ed4e60edc01a7291d310bb1b3dc8f603de4367ef35dc8a9e9a5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e302e6d31f283ed4e60edc01a7291d310bb1b3dc8f603de4367ef35dc8a9e9a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ngolo-fuzzing/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99713, "scanner": "repobility-docker", "fingerprint": "d3c75d7c6cae0ad62ab0441730bb21e7768a200c95307e6a2da5648c6f68db51", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3c75d7c6cae0ad62ab0441730bb21e7768a200c95307e6a2da5648c6f68db51"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nginx/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99712, "scanner": "repobility-docker", "fingerprint": "621b0b03c2ca1e9de4bad100b05d5af0de38af37df9870f75c2c87a1e965b79f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|621b0b03c2ca1e9de4bad100b05d5af0de38af37df9870f75c2c87a1e965b79f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nginx/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99709, "scanner": "repobility-docker", "fingerprint": "3ee4251b0787274bb4b9d1915a3f22f016dfd50decc8ab8fc8d0200c15ad8959", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ee4251b0787274bb4b9d1915a3f22f016dfd50decc8ab8fc8d0200c15ad8959"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nghttp2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99708, "scanner": "repobility-docker", "fingerprint": "025a5a0a5a4589000f7e0579674110b9e8b71b2582498a51132db38a85937bcc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|025a5a0a5a4589000f7e0579674110b9e8b71b2582498a51132db38a85937bcc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nghttp2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99705, "scanner": "repobility-docker", "fingerprint": "ce9a71049741a563db5293fc7f531b484e6fd6a5c7c24a657f040da9bf353845", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ce9a71049741a563db5293fc7f531b484e6fd6a5c7c24a657f040da9bf353845"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99704, "scanner": "repobility-docker", "fingerprint": "96ad04cd15a9e78adec96cccb39fb8e5f7fb794ef63f5c68ae9901ed1d260afa", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96ad04cd15a9e78adec96cccb39fb8e5f7fb794ef63f5c68ae9901ed1d260afa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99703, "scanner": "repobility-docker", "fingerprint": "d51311cb49b2df743e2c5ff8e9e14b84ca9996a70d8c613c58d2dd44158cceed", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d51311cb49b2df743e2c5ff8e9e14b84ca9996a70d8c613c58d2dd44158cceed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99699, "scanner": "repobility-docker", "fingerprint": "7dc7373ac4c6992d287b2164b0f43686304d4483773069149fb671918558c4ac", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7dc7373ac4c6992d287b2164b0f43686304d4483773069149fb671918558c4ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/networkx/Dockerfile"}, "region": {"startLine": 33}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99698, "scanner": "repobility-docker", "fingerprint": "840d02c52918fcf78be0788190f6b3a35503e52e0230e72d0ead31ac7509af56", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|840d02c52918fcf78be0788190f6b3a35503e52e0230e72d0ead31ac7509af56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/networkx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99697, "scanner": "repobility-docker", "fingerprint": "0d7e68e38a49360ffb90a0e49ca8e7f827b2b64f5743d7d36e6bfd2ed771e6f2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0d7e68e38a49360ffb90a0e49ca8e7f827b2b64f5743d7d36e6bfd2ed771e6f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/networkx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99694, "scanner": "repobility-docker", "fingerprint": "37120869529a33262511080057c1684e9cd208dadb604f024a59d752d54bb658", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|37120869529a33262511080057c1684e9cd208dadb604f024a59d752d54bb658"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netty-tcnative/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99692, "scanner": "repobility-docker", "fingerprint": "4dfb7b8c5665e4aff8220d6a4fe5ad29b74dad9f25e6c5bc178ea7a45406bf2b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4dfb7b8c5665e4aff8220d6a4fe5ad29b74dad9f25e6c5bc178ea7a45406bf2b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netty/Dockerfile"}, "region": {"startLine": 29}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99689, "scanner": "repobility-docker", "fingerprint": "e25c719a1147d653210d28081c7423c37048a616991d698a89c01c44d43fbd0b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e25c719a1147d653210d28081c7423c37048a616991d698a89c01c44d43fbd0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nettle/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99688, "scanner": "repobility-docker", "fingerprint": "14ab758bc00223108f2cfeb5a9099e0818a15f3b919e71c30540305bbd5a816a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|14ab758bc00223108f2cfeb5a9099e0818a15f3b919e71c30540305bbd5a816a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nettle/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99686, "scanner": "repobility-docker", "fingerprint": "0e1dc217e2c0b183ddd9cd87c14251bd71b629361428307f13c1f51ea450b6df", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0e1dc217e2c0b183ddd9cd87c14251bd71b629361428307f13c1f51ea450b6df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netcdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99685, "scanner": "repobility-docker", "fingerprint": "01c613df22e6ef943d8757342f39de0c6ddb1398281755de455a1497902165b8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|01c613df22e6ef943d8757342f39de0c6ddb1398281755de455a1497902165b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/netcdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99678, "scanner": "repobility-docker", "fingerprint": "a7da2c1529138840dbbc5be8f5fe3653ee0b0421ec3cfe7e12602fea6436105f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7da2c1529138840dbbc5be8f5fe3653ee0b0421ec3cfe7e12602fea6436105f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nestegg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99677, "scanner": "repobility-docker", "fingerprint": "379a738a25823518f45d26d5c882c1d1d5f11741e1d6d127df6aa1bcac985ce7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|379a738a25823518f45d26d5c882c1d1d5f11741e1d6d127df6aa1bcac985ce7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nestegg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99672, "scanner": "repobility-docker", "fingerprint": "5e847b531d5187082f971fff428511a85ea2e9212c4069cf6c91ec069d1f5832", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5e847b531d5187082f971fff428511a85ea2e9212c4069cf6c91ec069d1f5832"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/neomutt/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99671, "scanner": "repobility-docker", "fingerprint": "85760ef6c4359607982ef0b7daaa3c69798ce407dd0497cc2679ce600bf35cd3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|85760ef6c4359607982ef0b7daaa3c69798ce407dd0497cc2679ce600bf35cd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/neomutt/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99667, "scanner": "repobility-docker", "fingerprint": "ee4f8368aa19ac00d4bc4f6e18195a3c9f852a186f32d2560887cbf78f07b27b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee4f8368aa19ac00d4bc4f6e18195a3c9f852a186f32d2560887cbf78f07b27b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ndpi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99666, "scanner": "repobility-docker", "fingerprint": "8fe4852980ee2d33686267f4c41e730350238a7404ba86eeb6937ae9376191d9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8fe4852980ee2d33686267f4c41e730350238a7404ba86eeb6937ae9376191d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ndpi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99663, "scanner": "repobility-docker", "fingerprint": "9afab0bcc142fe8faa83adc154baa3abcade22e5c30157b32c815c9c425c9f9c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9afab0bcc142fe8faa83adc154baa3abcade22e5c30157b32c815c9c425c9f9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nccl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99662, "scanner": "repobility-docker", "fingerprint": "4c07a0b51f9bd4468229d707a0b99a06dc362bb3a6e3e7feb953d4629887cb74", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4c07a0b51f9bd4468229d707a0b99a06dc362bb3a6e3e7feb953d4629887cb74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nccl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99657, "scanner": "repobility-docker", "fingerprint": "5be2ace381148ae7dc18a0ba6cab96cf7319536f40f8b785109f144758d98197", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5be2ace381148ae7dc18a0ba6cab96cf7319536f40f8b785109f144758d98197"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99655, "scanner": "repobility-docker", "fingerprint": "07feab707160ea82f85c09e47e49859dcc24eb129c3d6f77eb6f8839f8522d03", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|07feab707160ea82f85c09e47e49859dcc24eb129c3d6f77eb6f8839f8522d03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99654, "scanner": "repobility-docker", "fingerprint": "5f793706f3ef6298a7a6a3d155afb18097971ab3d21eb3528fe538855a1c3238", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f793706f3ef6298a7a6a3d155afb18097971ab3d21eb3528fe538855a1c3238"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99653, "scanner": "repobility-docker", "fingerprint": "e5cd8cd02ee9029e9179132a3b4862ddf4478449da918c974fd9536211bdfe03", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e5cd8cd02ee9029e9179132a3b4862ddf4478449da918c974fd9536211bdfe03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99649, "scanner": "repobility-docker", "fingerprint": "078ac4994bf4eeec8c70e2a8983610de384fdf396d5dbf6b668c1a20280ff405", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|078ac4994bf4eeec8c70e2a8983610de384fdf396d5dbf6b668c1a20280ff405"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nanopb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99648, "scanner": "repobility-docker", "fingerprint": "d3c7f81ec380e9e267d9e7024152f08eee39a35579e11057499605d1950e73cf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3c7f81ec380e9e267d9e7024152f08eee39a35579e11057499605d1950e73cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nanopb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99647, "scanner": "repobility-docker", "fingerprint": "34b5895bfbfdd5a52af5c423f58a88c2b9cfae917fb16482e7b68e59df23fbd9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|34b5895bfbfdd5a52af5c423f58a88c2b9cfae917fb16482e7b68e59df23fbd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nanopb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99644, "scanner": "repobility-docker", "fingerprint": "5ee5c2331dd2baa7e819650258c96da1d00cd88570677326dac88a468bb2dbf0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ee5c2331dd2baa7e819650258c96da1d00cd88570677326dac88a468bb2dbf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/naga/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99643, "scanner": "repobility-docker", "fingerprint": "262343d5e699702c45378f90a18a13e1cb9c7af8a0ae9a1a660ba894fbf3c32e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|262343d5e699702c45378f90a18a13e1cb9c7af8a0ae9a1a660ba894fbf3c32e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/naga/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99640, "scanner": "repobility-docker", "fingerprint": "09dccbcd0d38c24d309c52c9736d394a7b570988a876c689ed18eafe21efa4c6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09dccbcd0d38c24d309c52c9736d394a7b570988a876c689ed18eafe21efa4c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-server/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99639, "scanner": "repobility-docker", "fingerprint": "5383b7da0671a4243468ed9a8828318205cd3d4386ee880939287c949a83639c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5383b7da0671a4243468ed9a8828318205cd3d4386ee880939287c949a83639c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-server/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99637, "scanner": "repobility-docker", "fingerprint": "39cf27ffaa2ec4c206f438d0a1cd830168723d459638168fe8e65f1046ffbe7f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|39cf27ffaa2ec4c206f438d0a1cd830168723d459638168fe8e65f1046ffbe7f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mysql-connector-j/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99629, "scanner": "repobility-docker", "fingerprint": "4de5fa66dcceb58a48d19451e8155a0608bfce33fa571c5817f71a6c4fa14c8d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4de5fa66dcceb58a48d19451e8155a0608bfce33fa571c5817f71a6c4fa14c8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mxj/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99628, "scanner": "repobility-docker", "fingerprint": "0f638127d87d57920689261c1141511a67aa0c3a69a4364d118d4cdd9ac89ff1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0f638127d87d57920689261c1141511a67aa0c3a69a4364d118d4cdd9ac89ff1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mxj/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99620, "scanner": "repobility-docker", "fingerprint": "5b9a0ce41a369f6d4fb3e1b1067210379a5ea01dd08f1c53d1694ed22c31c31d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5b9a0ce41a369f6d4fb3e1b1067210379a5ea01dd08f1c53d1694ed22c31c31d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99619, "scanner": "repobility-docker", "fingerprint": "eb0adf1061834a06fac074509218d9fc9640e0dfae03103ddb0cee4358e70b50", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eb0adf1061834a06fac074509218d9fc9640e0dfae03103ddb0cee4358e70b50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99616, "scanner": "repobility-docker", "fingerprint": "ff0c0f1f2b6f66cd26b021f86f3cebbe7afb1c131a9c64778ef86f140a17a8e9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff0c0f1f2b6f66cd26b021f86f3cebbe7afb1c131a9c64778ef86f140a17a8e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99615, "scanner": "repobility-docker", "fingerprint": "45d8492313ed55bd5bde6bfb8df2040a677983b4dad22038a95beabf806085b3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|45d8492313ed55bd5bde6bfb8df2040a677983b4dad22038a95beabf806085b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99614, "scanner": "repobility-docker", "fingerprint": "869417425a90a6f4fd813a81ff6fe64c15d0c52e003fcd3c306bae72a9ab36f5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|869417425a90a6f4fd813a81ff6fe64c15d0c52e003fcd3c306bae72a9ab36f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99613, "scanner": "repobility-docker", "fingerprint": "fe2ba2ff679a2f841916994959f41afe9b772502433a3725e4dfa7d86d62bbc4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fe2ba2ff679a2f841916994959f41afe9b772502433a3725e4dfa7d86d62bbc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muparser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99606, "scanner": "repobility-docker", "fingerprint": "fa00b347c3ff6c0d6810f8d31d243f4b9cfc4d570b9a6483812363af928f9288", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fa00b347c3ff6c0d6810f8d31d243f4b9cfc4d570b9a6483812363af928f9288"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muduo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99605, "scanner": "repobility-docker", "fingerprint": "280eb69118fd1584318a652cb599746de6f032efc57e3aaf76ca8dcffda737f8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|280eb69118fd1584318a652cb599746de6f032efc57e3aaf76ca8dcffda737f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/muduo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99600, "scanner": "repobility-docker", "fingerprint": "676fc911ceb2450d83b16989a35b41fbe4c38ab32fb9aafcaf0141ea23d42ea3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|676fc911ceb2450d83b16989a35b41fbe4c38ab32fb9aafcaf0141ea23d42ea3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msquic/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99596, "scanner": "repobility-docker", "fingerprint": "b6beb02d3b63ae62b06684f0d9c9c072d1f39471b7980a49910605f3a49ea966", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b6beb02d3b63ae62b06684f0d9c9c072d1f39471b7980a49910605f3a49ea966"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-python/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99593, "scanner": "repobility-docker", "fingerprint": "a33b94e43ad85610fa059415c2fc09bcbad12bd7e3117601d1a904ef2cca2b20", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a33b94e43ad85610fa059415c2fc09bcbad12bd7e3117601d1a904ef2cca2b20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99592, "scanner": "repobility-docker", "fingerprint": "97d8be13311fc943d3ecb1c4741d044346e771e68e383ec3dec3b21db97f825b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|97d8be13311fc943d3ecb1c4741d044346e771e68e383ec3dec3b21db97f825b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msgpack-c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99588, "scanner": "repobility-docker", "fingerprint": "db3cc63381e9ce1224ddf5170f2a6d158d7303a9edaf6b6dda85d12224331445", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|db3cc63381e9ce1224ddf5170f2a6d158d7303a9edaf6b6dda85d12224331445"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ms-tpm-20-ref/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99587, "scanner": "repobility-docker", "fingerprint": "236c56109c43f2a8fd5f58f23fa87d60c73857942196837861fcc0ed8af73405", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|236c56109c43f2a8fd5f58f23fa87d60c73857942196837861fcc0ed8af73405"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ms-tpm-20-ref/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99585, "scanner": "repobility-docker", "fingerprint": "cd211fa51cdb28ffc24ec37befadd0b66da684a05acffdb42670ec8b64f5443f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd211fa51cdb28ffc24ec37befadd0b66da684a05acffdb42670ec8b64f5443f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mruby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99584, "scanner": "repobility-docker", "fingerprint": "b621493da0b918559358076e8c3979a65578178818cdf64bc0dab5b385e84233", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b621493da0b918559358076e8c3979a65578178818cdf64bc0dab5b385e84233"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mruby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99579, "scanner": "repobility-docker", "fingerprint": "7714b24d3c76377ea5669def3b77c630eb2ae3595df3301443f674bc98eef2b7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7714b24d3c76377ea5669def3b77c630eb2ae3595df3301443f674bc98eef2b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpv/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99576, "scanner": "repobility-docker", "fingerprint": "d64aa50a7d87ba02733d99d2b6748bf8dc781c8309aaa9c1a1f4657d005d4a00", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d64aa50a7d87ba02733d99d2b6748bf8dc781c8309aaa9c1a1f4657d005d4a00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpg123/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99575, "scanner": "repobility-docker", "fingerprint": "047246e0bfdf3b9f55e120fc5b6700624d3cd673b72500590e60c3cf8aa210df", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|047246e0bfdf3b9f55e120fc5b6700624d3cd673b72500590e60c3cf8aa210df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mpg123/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99570, "scanner": "repobility-docker", "fingerprint": "739d66c3d4f57d7527a41971e54da0027006b721dacbcdb6a305738981000140", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|739d66c3d4f57d7527a41971e54da0027006b721dacbcdb6a305738981000140"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4parse-rust/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99569, "scanner": "repobility-docker", "fingerprint": "3c545284a9f2f969449a45234cbb5b371faa9b9235a6a96bde82408e75d28c52", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3c545284a9f2f969449a45234cbb5b371faa9b9235a6a96bde82408e75d28c52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mp4parse-rust/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99566, "scanner": "repobility-docker", "fingerprint": "c1e17c665c60af7afd8224358ef924a2e06e72f11d9773bdb1d8090991fcb247", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c1e17c665c60af7afd8224358ef924a2e06e72f11d9773bdb1d8090991fcb247"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosquitto/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99565, "scanner": "repobility-docker", "fingerprint": "fba821c8c89c008d98cc7ca7f33fda3668d8376f11416f1df4bbc6cae4459e0b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fba821c8c89c008d98cc7ca7f33fda3668d8376f11416f1df4bbc6cae4459e0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosquitto/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99562, "scanner": "repobility-docker", "fingerprint": "e4bb8126fbe58e4192bac78745e0397ae03106ef825a01871560bfdd01c7cbc5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e4bb8126fbe58e4192bac78745e0397ae03106ef825a01871560bfdd01c7cbc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99561, "scanner": "repobility-docker", "fingerprint": "8443f70daa9d84a9f07304f2aea0380f11bedcab444c0997685b14828fa25bce", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8443f70daa9d84a9f07304f2aea0380f11bedcab444c0997685b14828fa25bce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mosh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99553, "scanner": "repobility-docker", "fingerprint": "9e918b4fc814fc4e4642fb7160fd960c5238a3d71858020701be9f3a45a6c66b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9e918b4fc814fc4e4642fb7160fd960c5238a3d71858020701be9f3a45a6c66b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongo-go-driver/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99552, "scanner": "repobility-docker", "fingerprint": "1a9c581d2a7f48f6e491273fb068d3e167248d3e5ea6fa6f91f62ba8b8fb0c9d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1a9c581d2a7f48f6e491273fb068d3e167248d3e5ea6fa6f91f62ba8b8fb0c9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mongo-go-driver/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99546, "scanner": "repobility-docker", "fingerprint": "b92dd6f794d0606e33ee410986b880abc383c3c6efdad3af07a9d68e2f9314f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b92dd6f794d0606e33ee410986b880abc383c3c6efdad3af07a9d68e2f9314f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/model-transparency/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99545, "scanner": "repobility-docker", "fingerprint": "54e2164dba16c5d54cc911400b7b3473cf278ea5e1ad5f9bc8c061189cf2d408", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|54e2164dba16c5d54cc911400b7b3473cf278ea5e1ad5f9bc8c061189cf2d408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/model-transparency/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99542, "scanner": "repobility-docker", "fingerprint": "cb9b5a66c281894d9cd6f9f399cfab36317940246cce5a1f2917a1bdcf63f62c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb9b5a66c281894d9cd6f9f399cfab36317940246cce5a1f2917a1bdcf63f62c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/moby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99541, "scanner": "repobility-docker", "fingerprint": "15dc18bdd72a4ac5b3d734089bb54bcc27981ad7c22e6aa60b70a30044ce7db6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|15dc18bdd72a4ac5b3d734089bb54bcc27981ad7c22e6aa60b70a30044ce7db6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/moby/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99538, "scanner": "repobility-docker", "fingerprint": "c388135e85fb2b37870c2c845f7a68597f030edb1b9909f2e2eea9f6569589c6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c388135e85fb2b37870c2c845f7a68597f030edb1b9909f2e2eea9f6569589c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minizip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99537, "scanner": "repobility-docker", "fingerprint": "756fef516ce6639b50d2494408dd3e2f842dcb2165be6e62c6430e3bfb1e13f5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|756fef516ce6639b50d2494408dd3e2f842dcb2165be6e62c6430e3bfb1e13f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/minizip/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99534, "scanner": "repobility-docker", "fingerprint": "4e5bf361b0bad706192130e9649385af4361a320cc47197cb6416fb4284f551b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4e5bf361b0bad706192130e9649385af4361a320cc47197cb6416fb4284f551b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz_oxide/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99533, "scanner": "repobility-docker", "fingerprint": "09d2233f7735d84766298ffa4a2532599c7ac28b41700496c7ff48be3ab42a77", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|09d2233f7735d84766298ffa4a2532599c7ac28b41700496c7ff48be3ab42a77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz_oxide/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99530, "scanner": "repobility-docker", "fingerprint": "ef6ab92783ef640db721374df2acd4d89cc21b84710fe38375b01c15140e6a10", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ef6ab92783ef640db721374df2acd4d89cc21b84710fe38375b01c15140e6a10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99529, "scanner": "repobility-docker", "fingerprint": "ab0a667ef023c898ed348268cfe78f5563a0b222aeeb346b65a8ee75a4f0c590", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ab0a667ef023c898ed348268cfe78f5563a0b222aeeb346b65a8ee75a4f0c590"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/miniz/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99524, "scanner": "repobility-docker", "fingerprint": "84ac77860eb633835280c96f3665646d408ec7b428e7983d4a41cd2221ebf078", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84ac77860eb633835280c96f3665646d408ec7b428e7983d4a41cd2221ebf078"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/migtd/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99523, "scanner": "repobility-docker", "fingerprint": "1301d99e0a2e09f1165cf37c92677a4462f2140be3b492bc0ea87d8e22091636", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1301d99e0a2e09f1165cf37c92677a4462f2140be3b492bc0ea87d8e22091636"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/migtd/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99520, "scanner": "repobility-docker", "fingerprint": "5d29f4cfb342c7d97af75252039660da98d034b5b3e5289f14ab17b949dee14c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5d29f4cfb342c7d97af75252039660da98d034b5b3e5289f14ab17b949dee14c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/micronaut/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99519, "scanner": "repobility-docker", "fingerprint": "1f4168e94b4f72dcd003d73b06cf2f3c331ca26ea5998d6969f3090697fd29f3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1f4168e94b4f72dcd003d73b06cf2f3c331ca26ea5998d6969f3090697fd29f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/micronaut/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99513, "scanner": "repobility-docker", "fingerprint": "7351a0f603b636a819f42b0a780d85eecbb653b421cde90528695932dd81249f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7351a0f603b636a819f42b0a780d85eecbb653b421cde90528695932dd81249f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/meshoptimizer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99512, "scanner": "repobility-docker", "fingerprint": "e4f5b89d79e3f63679294aeda999f369e83bd875faa397e00b6471179860cb23", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e4f5b89d79e3f63679294aeda999f369e83bd875faa397e00b6471179860cb23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/meshoptimizer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99509, "scanner": "repobility-docker", "fingerprint": "c22db5343d9e4299bb50ab26f29d85abd34b29645b6a9a86da2ce805c78005e4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c22db5343d9e4299bb50ab26f29d85abd34b29645b6a9a86da2ce805c78005e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mercurial/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99508, "scanner": "repobility-docker", "fingerprint": "a8364f2f637a72fc6f12d4f6041af224d1997103dec52ba42fb43abbc419dfb2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a8364f2f637a72fc6f12d4f6041af224d1997103dec52ba42fb43abbc419dfb2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mercurial/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99505, "scanner": "repobility-docker", "fingerprint": "51eba2fc1a30f0ba1927f9b4ce89de1795b5d91a12b219089b8acfc508301d3c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51eba2fc1a30f0ba1927f9b4ce89de1795b5d91a12b219089b8acfc508301d3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/memcached/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99504, "scanner": "repobility-docker", "fingerprint": "079a950f97493ed645018df153ff697e604c165bd8503175aaab8fb88bbf078e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|079a950f97493ed645018df153ff697e604c165bd8503175aaab8fb88bbf078e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/memcached/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99499, "scanner": "repobility-docker", "fingerprint": "d541f69e4588e8247bbfb4431101de91233fae0de88c21cbde7483e0ad95eefd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d541f69e4588e8247bbfb4431101de91233fae0de88c21cbde7483e0ad95eefd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbtools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99498, "scanner": "repobility-docker", "fingerprint": "9b335ea994c4be886d7f106622376a8d496c23804563453852fb01d0e67b10bd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9b335ea994c4be886d7f106622376a8d496c23804563453852fb01d0e67b10bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mdbtools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99493, "scanner": "repobility-docker", "fingerprint": "edafcd42b46e2c3cba18774d8b79e9f30050c15a2bb3752883d38cecd311d3fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|edafcd42b46e2c3cba18774d8b79e9f30050c15a2bb3752883d38cecd311d3fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/md4c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99492, "scanner": "repobility-docker", "fingerprint": "3f2d0cfdb1c72e18c8b4b9bf968d6b718ad06ebde7c27c39fc90874ddefa847d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3f2d0cfdb1c72e18c8b4b9bf968d6b718ad06ebde7c27c39fc90874ddefa847d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/md4c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99488, "scanner": "repobility-docker", "fingerprint": "556bd06f0646f23438a686de54a626bbe71f5b6ee17b2f43f18b2cde91223134", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|556bd06f0646f23438a686de54a626bbe71f5b6ee17b2f43f18b2cde91223134"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99487, "scanner": "repobility-docker", "fingerprint": "aedebbc14c933a315679efba1a03785f80646ea44b43e0e0f8663e12ea0c7d46", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aedebbc14c933a315679efba1a03785f80646ea44b43e0e0f8663e12ea0c7d46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99486, "scanner": "repobility-docker", "fingerprint": "ceabdb395ca9e280039cc391abd217fd544973ce9bb5dd1e75d35bf76f4b20bf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ceabdb395ca9e280039cc391abd217fd544973ce9bb5dd1e75d35bf76f4b20bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99485, "scanner": "repobility-docker", "fingerprint": "fe437a20a1f4ccfbec4493eaa41e068a61f5754611d07a382172338dd94a2e58", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fe437a20a1f4ccfbec4493eaa41e068a61f5754611d07a382172338dd94a2e58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mbedtls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99482, "scanner": "repobility-docker", "fingerprint": "f2482657c9648cae6aa30278938454d41366e75b7f8d083912616f917d91c720", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f2482657c9648cae6aa30278938454d41366e75b7f8d083912616f917d91c720"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven-model/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99481, "scanner": "repobility-docker", "fingerprint": "cd0923fa47863b35e02db08a2ea9d2975b396cfc666186fee2b26c1c73273c9f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cd0923fa47863b35e02db08a2ea9d2975b396cfc666186fee2b26c1c73273c9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/maven-model/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99476, "scanner": "repobility-docker", "fingerprint": "bb8a112ac826f9534779b385e95fb6b820291892bdaac606981b120d0b6acf19", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bb8a112ac826f9534779b385e95fb6b820291892bdaac606981b120d0b6acf19"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99475, "scanner": "repobility-docker", "fingerprint": "6c6a8f03646be89ce6f5386ff9c7a34340bf3750ca05e7c4ed2c5d940f2aa2f3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6c6a8f03646be89ce6f5386ff9c7a34340bf3750ca05e7c4ed2c5d940f2aa2f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99474, "scanner": "repobility-docker", "fingerprint": "72eaff557c8f37806947fa7b366bc43d2d8febec577cb329ac569c31520dc0fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|72eaff557c8f37806947fa7b366bc43d2d8febec577cb329ac569c31520dc0fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99473, "scanner": "repobility-docker", "fingerprint": "61f5d1a73dcc52c7ef6f0dd4f87de8c0135df487022a55a6a5b7706bc572f888", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|61f5d1a73dcc52c7ef6f0dd4f87de8c0135df487022a55a6a5b7706bc572f888"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99472, "scanner": "repobility-docker", "fingerprint": "5860ba9548dd7fb011d590279a86cf72d5240e941a45cd8b057f0bc62dcaa843", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5860ba9548dd7fb011d590279a86cf72d5240e941a45cd8b057f0bc62dcaa843"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99471, "scanner": "repobility-docker", "fingerprint": "3a5b48208faeea8a53e427217fdfd5ccea5506b0e953019a9a40defa855b3b8c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3a5b48208faeea8a53e427217fdfd5ccea5506b0e953019a9a40defa855b3b8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matplotlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99469, "scanner": "repobility-docker", "fingerprint": "f73dcffe1e6da15f71559e3791691b7ae65961546659fb8af27df0f87a5f0cf0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f73dcffe1e6da15f71559e3791691b7ae65961546659fb8af27df0f87a5f0cf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99468, "scanner": "repobility-docker", "fingerprint": "b2f923594fab328820ad8cec4a2f0617cb2a1ee3c90b2d1607a578461f4440a4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b2f923594fab328820ad8cec4a2f0617cb2a1ee3c90b2d1607a578461f4440a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/matio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99465, "scanner": "repobility-docker", "fingerprint": "ca83af2f2e42ad2e24e573ac5ab5a3aabfa68969c03e7578aecd8a3448747fb7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ca83af2f2e42ad2e24e573ac5ab5a3aabfa68969c03e7578aecd8a3448747fb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/markupsafe/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99459, "scanner": "repobility-docker", "fingerprint": "d9695893b788a8288c453cdc5848b62653bd1390fde38e8e7e3106476b053244", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d9695893b788a8288c453cdc5848b62653bd1390fde38e8e7e3106476b053244"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mariadb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99456, "scanner": "repobility-docker", "fingerprint": "72d4f07563353c02e0e9f769581ac3d8d7619745406fc9bd4ede695e760ccc04", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|72d4f07563353c02e0e9f769581ac3d8d7619745406fc9bd4ede695e760ccc04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mapserver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99455, "scanner": "repobility-docker", "fingerprint": "2faa98b4bc2f218122563fa5ef299857782575b807f29baa2dc01e0d02f83a97", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2faa98b4bc2f218122563fa5ef299857782575b807f29baa2dc01e0d02f83a97"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mapserver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99452, "scanner": "repobility-docker", "fingerprint": "ed1dc0a900ea97cae76988845a4e930f6c10cee4545bd3e36c286d8865df2e67", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed1dc0a900ea97cae76988845a4e930f6c10cee4545bd3e36c286d8865df2e67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mako/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99451, "scanner": "repobility-docker", "fingerprint": "18d61ea176a5dac9bc81103d5902dcf06618aab11c2366010c8bbbaf24d8e15c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|18d61ea176a5dac9bc81103d5902dcf06618aab11c2366010c8bbbaf24d8e15c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mako/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99448, "scanner": "repobility-docker", "fingerprint": "afb0bef9ab066aad086f9c313d197d1c5949f2ad17018153e54a86488d4b1bfd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|afb0bef9ab066aad086f9c313d197d1c5949f2ad17018153e54a86488d4b1bfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/magic-enum/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99447, "scanner": "repobility-docker", "fingerprint": "0aaba02dea9339479a4abf9c632d249401eb1fce8fe8d2594b34b5c1dd9f3317", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0aaba02dea9339479a4abf9c632d249401eb1fce8fe8d2594b34b5c1dd9f3317"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/magic-enum/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99446, "scanner": "repobility-docker", "fingerprint": "2a1f4f860049c882c92e02acc9ee6bfd9e4eb3ccbbc48f530147fd98a3c0b494", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2a1f4f860049c882c92e02acc9ee6bfd9e4eb3ccbbc48f530147fd98a3c0b494"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/magic-enum/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99443, "scanner": "repobility-docker", "fingerprint": "8b29bbf373ce04b7962309dd35ac0e3a82c8a4092c4cb7375fadd6ef6240d0d9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b29bbf373ce04b7962309dd35ac0e3a82c8a4092c4cb7375fadd6ef6240d0d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99442, "scanner": "repobility-docker", "fingerprint": "f10d353de1c3e5745cc4f325f5c19ae5f675be99c785fa429fd12853a64631cb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f10d353de1c3e5745cc4f325f5c19ae5f675be99c785fa429fd12853a64631cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99439, "scanner": "repobility-docker", "fingerprint": "5282a9f12e1a92bb41699a114222706ee22e75fe22c9de2f9a830cad7814dcfd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5282a9f12e1a92bb41699a114222706ee22e75fe22c9de2f9a830cad7814dcfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzma/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99438, "scanner": "repobility-docker", "fingerprint": "e763c5b606eb8833e8f5880d0690b6a73ffb988d77149e386afff77d93b06798", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e763c5b606eb8833e8f5880d0690b6a73ffb988d77149e386afff77d93b06798"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lzma/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99431, "scanner": "repobility-docker", "fingerprint": "4a875a7da3d9d7b42cfe5639a153a0e275181729226bb43d5b67e2815757df49", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4a875a7da3d9d7b42cfe5639a153a0e275181729226bb43d5b67e2815757df49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxml/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99430, "scanner": "repobility-docker", "fingerprint": "fc335b41d701ae3c9e77ffbe58ad5b37d4a2513c55eb99abf73f76460f655858", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc335b41d701ae3c9e77ffbe58ad5b37d4a2513c55eb99abf73f76460f655858"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxml/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99429, "scanner": "repobility-docker", "fingerprint": "76c1f8798d404ecd33204d5546803cb50070396a540b09ed664841f7b3081b20", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|76c1f8798d404ecd33204d5546803cb50070396a540b09ed664841f7b3081b20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lxml/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99424, "scanner": "repobility-docker", "fingerprint": "45da5f4bb9673fd1f2712d256246a4735e8ead05220185ef3dbea6512323b0f6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|45da5f4bb9673fd1f2712d256246a4735e8ead05220185ef3dbea6512323b0f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lwan/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99421, "scanner": "repobility-docker", "fingerprint": "bda5d4202c44ae3d5e5791e05bacdec045712a8f512b3cff45c98053c3fc800b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bda5d4202c44ae3d5e5791e05bacdec045712a8f512b3cff45c98053c3fc800b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lucene/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99420, "scanner": "repobility-docker", "fingerprint": "47f29a5af3b8590898413ebbea905b6223ea9b811125ee650d90a492c5ee59ee", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|47f29a5af3b8590898413ebbea905b6223ea9b811125ee650d90a492c5ee59ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lucene/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99417, "scanner": "repobility-docker", "fingerprint": "dff109646390b42c1dfb4e6e77859af9e5bacd79ce89b80ce000b08b69ac6ddf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dff109646390b42c1dfb4e6e77859af9e5bacd79ce89b80ce000b08b69ac6ddf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lua-example/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99416, "scanner": "repobility-docker", "fingerprint": "f3cd9f22394cf1f61c19544e9f0749e347b8881532cbc2ae19a3c606a2b7655e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f3cd9f22394cf1f61c19544e9f0749e347b8881532cbc2ae19a3c606a2b7655e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lua-example/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99412, "scanner": "repobility-docker", "fingerprint": "e81965719c4fafe3034e487993bbc7e18ba91570ec4e804a1ef48d228d23e8c5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e81965719c4fafe3034e487993bbc7e18ba91570ec4e804a1ef48d228d23e8c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lotus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99411, "scanner": "repobility-docker", "fingerprint": "0de56afff62e1491fde9ed257d5c7e492b4bf7dae2d6c87dd82a9cd79f71f602", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0de56afff62e1491fde9ed257d5c7e492b4bf7dae2d6c87dd82a9cd79f71f602"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lotus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99409, "scanner": "repobility-docker", "fingerprint": "0cdaf9caaddd72232298cbb5d9aa259168d0fc8fe1a39780eeeb0d75d864b273", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cdaf9caaddd72232298cbb5d9aa259168d0fc8fe1a39780eeeb0d75d864b273"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/looker-sdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99408, "scanner": "repobility-docker", "fingerprint": "5379ce67e7e065739969d681a9c99d936c791a3d9fec7247c26476bd8e3ebab6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5379ce67e7e065739969d681a9c99d936c791a3d9fec7247c26476bd8e3ebab6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/looker-sdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99401, "scanner": "repobility-docker", "fingerprint": "5a4fdf4e030f74517404c666125f69bdfc1afb5d142e2d43254a1ebc763d5ac9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5a4fdf4e030f74517404c666125f69bdfc1afb5d142e2d43254a1ebc763d5ac9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99400, "scanner": "repobility-docker", "fingerprint": "42cc4604569fe3ef4799e5d2b75ca389b8d5b53e1f3f3eebf9a63b944dbb0876", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|42cc4604569fe3ef4799e5d2b75ca389b8d5b53e1f3f3eebf9a63b944dbb0876"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99399, "scanner": "repobility-docker", "fingerprint": "77f1cf702a4440beb6dce4db137a56fec8b66f22c2fd3ce24aee3055fd50d32b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77f1cf702a4440beb6dce4db137a56fec8b66f22c2fd3ce24aee3055fd50d32b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99398, "scanner": "repobility-docker", "fingerprint": "d68d697392f131eef10d4c4b0650136b82c7018ac38644ee66ddc8046888f600", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d68d697392f131eef10d4c4b0650136b82c7018ac38644ee66ddc8046888f600"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/log4j2/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99393, "scanner": "repobility-docker", "fingerprint": "1b6279133dca5ef6c45701d423264cb19bbe89072a22ff382931c6d21ab4e378", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b6279133dca5ef6c45701d423264cb19bbe89072a22ff382931c6d21ab4e378"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99392, "scanner": "repobility-docker", "fingerprint": "c2d3d73ba07158e20ab40bd56b2eae5afbd9bcdbc2bec5912c52b681abbe7b61", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c2d3d73ba07158e20ab40bd56b2eae5afbd9bcdbc2bec5912c52b681abbe7b61"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lodepng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99384, "scanner": "repobility-docker", "fingerprint": "a5cdb80409cf4a4d1272e1c2a89b1e2520a204068d3811170947f5a76e4a4f74", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a5cdb80409cf4a4d1272e1c2a89b1e2520a204068d3811170947f5a76e4a4f74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99383, "scanner": "repobility-docker", "fingerprint": "65186cdd24949e609cd3190ca690831e7e1e202a8f8e0c9e8f501ddc70732eca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|65186cdd24949e609cd3190ca690831e7e1e202a8f8e0c9e8f501ddc70732eca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llvm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99380, "scanner": "repobility-docker", "fingerprint": "7a15339e8916d3025efd7d74fea084eb416a9878b445fe556a3c3df87e8de4b0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7a15339e8916d3025efd7d74fea084eb416a9878b445fe556a3c3df87e8de4b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llhttp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99379, "scanner": "repobility-docker", "fingerprint": "4279d2926ee1de2a6c4e706d124cff23482b4fcb4463eaef7d000ce99e41a0da", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4279d2926ee1de2a6c4e706d124cff23482b4fcb4463eaef7d000ce99e41a0da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llhttp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99376, "scanner": "repobility-docker", "fingerprint": "cb0879a63d5659ad51c4e94b3218299b971d17e368c225119c29532631e613de", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cb0879a63d5659ad51c4e94b3218299b971d17e368c225119c29532631e613de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99375, "scanner": "repobility-docker", "fingerprint": "9800f62865a9f45223f0893af4252da84e48dcb077677d2cd58bc7d908ab1f12", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9800f62865a9f45223f0893af4252da84e48dcb077677d2cd58bc7d908ab1f12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldpd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99372, "scanner": "repobility-docker", "fingerprint": "bdebec2bea42109773557fa61f53005d76f7a171c24461bab4a32c36a37186c8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bdebec2bea42109773557fa61f53005d76f7a171c24461bab4a32c36a37186c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lldb-eval/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99370, "scanner": "repobility-docker", "fingerprint": "392ee82ba37d1682e42fb45ba9b7b588e09fb2e16084d62633f4a7042e3c5a7c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|392ee82ba37d1682e42fb45ba9b7b588e09fb2e16084d62633f4a7042e3c5a7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llamacpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99369, "scanner": "repobility-docker", "fingerprint": "42a8f7fea27f7ca4e0f5dec9867e36e94c258d18e8001b5720671923421f9a64", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|42a8f7fea27f7ca4e0f5dec9867e36e94c258d18e8001b5720671923421f9a64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/llamacpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99357, "scanner": "repobility-docker", "fingerprint": "6dcc33a3a4209fd8d44b887b591a43d21bbdd776f951ed73d5da574c892625b6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6dcc33a3a4209fd8d44b887b591a43d21bbdd776f951ed73d5da574c892625b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lighttpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99356, "scanner": "repobility-docker", "fingerprint": "867d39959aba340f050eea816daeb99b442911ef5c77071032bb1ce99c181ee5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|867d39959aba340f050eea816daeb99b442911ef5c77071032bb1ce99c181ee5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lighttpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99353, "scanner": "repobility-docker", "fingerprint": "d7bf4a10f2239e29eba46a0885732672eb293b79009c64ccad76fc9fa418c20e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d7bf4a10f2239e29eba46a0885732672eb293b79009c64ccad76fc9fa418c20e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzmq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99352, "scanner": "repobility-docker", "fingerprint": "1d260175e1161c60a5c592e57af021cf5fe815170777ff95608ffeea10069307", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1d260175e1161c60a5c592e57af021cf5fe815170777ff95608ffeea10069307"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzmq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99349, "scanner": "repobility-docker", "fingerprint": "3778163969b0dcbf8c529b7bf5c3d9f537898f9cf35d3e7946d68aeb169388e5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3778163969b0dcbf8c529b7bf5c3d9f537898f9cf35d3e7946d68aeb169388e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzip/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99348, "scanner": "repobility-docker", "fingerprint": "7e2a8fa62dea94a8d693e66e3b886830758d751e936294495fdd3d9c438551a8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7e2a8fa62dea94a8d693e66e3b886830758d751e936294495fdd3d9c438551a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libzip/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99345, "scanner": "repobility-docker", "fingerprint": "048012f8e74175f56b252cab93313b7be5d96e4cba5c874b4a54104f6c1c15ca", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|048012f8e74175f56b252cab93313b7be5d96e4cba5c874b4a54104f6c1c15ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyang/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99344, "scanner": "repobility-docker", "fingerprint": "2998edd8b5bf4675c1e103ef9cfe61fdceffc4bb8f116a96cf12f5cf83c4851e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2998edd8b5bf4675c1e103ef9cfe61fdceffc4bb8f116a96cf12f5cf83c4851e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyang/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99341, "scanner": "repobility-docker", "fingerprint": "2504b94f637e625012f669a78ca3e9e3df2df7493331559731456dcd9a73caf1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2504b94f637e625012f669a78ca3e9e3df2df7493331559731456dcd9a73caf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyaml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99340, "scanner": "repobility-docker", "fingerprint": "24da6e821787aa3ae83c84fb1f75c834de6ecaeab134be404df6c1df6c04aa5e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|24da6e821787aa3ae83c84fb1f75c834de6ecaeab134be404df6c1df6c04aa5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyaml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99337, "scanner": "repobility-docker", "fingerprint": "ceb5c5b10af74aadf23534bf705759bbf038fbd5f8c9a4ac50561a3797c03321", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ceb5c5b10af74aadf23534bf705759bbf038fbd5f8c9a4ac50561a3797c03321"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyal/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99336, "scanner": "repobility-docker", "fingerprint": "6d1dc3de74eeddfaecd4471985e773e0a6bbe10d3f032eb2c35d08a3b6d7bd5c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6d1dc3de74eeddfaecd4471985e773e0a6bbe10d3f032eb2c35d08a3b6d7bd5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libyal/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99333, "scanner": "repobility-docker", "fingerprint": "b22454e6dae21b9d0141836b839a5559db3bc475acb31c7aa252d28643b3d67b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b22454e6dae21b9d0141836b839a5559db3bc475acb31c7aa252d28643b3d67b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxslt/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99332, "scanner": "repobility-docker", "fingerprint": "76e409515bb46e8b850e1c82c4d793c6ee4ef399d044f307bc12fec553487305", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|76e409515bb46e8b850e1c82c4d793c6ee4ef399d044f307bc12fec553487305"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxslt/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99329, "scanner": "repobility-docker", "fingerprint": "0dfdfcd9d11da2b4ed605355195ca671b35e6fce2a89186b60f858727ce805aa", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0dfdfcd9d11da2b4ed605355195ca671b35e6fce2a89186b60f858727ce805aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxml2/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99328, "scanner": "repobility-docker", "fingerprint": "6a28d36e3a56075f589723f264588329be2bd4ce0914e4dd06300e84c631778e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6a28d36e3a56075f589723f264588329be2bd4ce0914e4dd06300e84c631778e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxml2/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99325, "scanner": "repobility-docker", "fingerprint": "d776106a5512ab0ae9ff5e27229ac997da3cd7a7b1f2f6d4d0bc02e752ea18f0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d776106a5512ab0ae9ff5e27229ac997da3cd7a7b1f2f6d4d0bc02e752ea18f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxlsxwriter/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99324, "scanner": "repobility-docker", "fingerprint": "e12e5e683deee790702f9ec204415908a408b2aae80019437262dc95f99f33e7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e12e5e683deee790702f9ec204415908a408b2aae80019437262dc95f99f33e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxlsxwriter/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99323, "scanner": "repobility-docker", "fingerprint": "5884dd3988f373211adf5223063534d26c1c78d8b8cd82b21f8e4c58c93bd461", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5884dd3988f373211adf5223063534d26c1c78d8b8cd82b21f8e4c58c93bd461"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxlsxwriter/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99320, "scanner": "repobility-docker", "fingerprint": "9c873b36f9e63d0d521ac754d22167e2ded8d7124d52a0ec4199a5b4fff7ccee", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c873b36f9e63d0d521ac754d22167e2ded8d7124d52a0ec4199a5b4fff7ccee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99319, "scanner": "repobility-docker", "fingerprint": "c67692b5ac2be4a0c58de0895bd508e43566779d0548bf2cd3cac05f1a5a3652", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c67692b5ac2be4a0c58de0895bd508e43566779d0548bf2cd3cac05f1a5a3652"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99315, "scanner": "repobility-docker", "fingerprint": "7f172168591c48321dca1563e41e89a08701d15b60dca15687b9dd8fdc492895", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f172168591c48321dca1563e41e89a08701d15b60dca15687b9dd8fdc492895"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxaac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99314, "scanner": "repobility-docker", "fingerprint": "7d495be76e6f2783440eff8242c7a8bbf1fe6c9a53e60199d1df216e4f908b63", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7d495be76e6f2783440eff8242c7a8bbf1fe6c9a53e60199d1df216e4f908b63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libxaac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99311, "scanner": "repobility-docker", "fingerprint": "09cd9fda8d31e3d35cc2dc4b8fab525f6846a48f92cf32dd7426c2b734bd382f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09cd9fda8d31e3d35cc2dc4b8fab525f6846a48f92cf32dd7426c2b734bd382f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebsockets/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99310, "scanner": "repobility-docker", "fingerprint": "1996d3b69f9b9d4f1bd92ae3fe8872bb71d1aa9e304275519648540c8f73c795", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1996d3b69f9b9d4f1bd92ae3fe8872bb71d1aa9e304275519648540c8f73c795"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebsockets/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99306, "scanner": "repobility-docker", "fingerprint": "a6df9dd594268849bb80481997be620c249abe9b621bc5f3511773d5b556ea54", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a6df9dd594268849bb80481997be620c249abe9b621bc5f3511773d5b556ea54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99305, "scanner": "repobility-docker", "fingerprint": "e0122a680826af90e0b98abb66ea228de7cb4589b3aa23aa5fc5f46827ea29b9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e0122a680826af90e0b98abb66ea228de7cb4589b3aa23aa5fc5f46827ea29b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99301, "scanner": "repobility-docker", "fingerprint": "9a74bc7784ba46578aef61cdaa8b2d0d9b369d2a23e0d4a1b073042103eb6d4a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9a74bc7784ba46578aef61cdaa8b2d0d9b369d2a23e0d4a1b073042103eb6d4a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99300, "scanner": "repobility-docker", "fingerprint": "ec971f086f86c37d8c9c472e3391cbf5920f45e29e48fea131ede64ec3d51ca3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ec971f086f86c37d8c9c472e3391cbf5920f45e29e48fea131ede64ec3d51ca3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99297, "scanner": "repobility-docker", "fingerprint": "0be18adebba3cf3823d0eab88cd478a365193b422458f8a2b2a4c830d116e5dd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0be18adebba3cf3823d0eab88cd478a365193b422458f8a2b2a4c830d116e5dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvnc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99296, "scanner": "repobility-docker", "fingerprint": "e22a857ee840fc9d04870b936f612c4188a12fcc65ca5b0d1a91264a8f39a536", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e22a857ee840fc9d04870b936f612c4188a12fcc65ca5b0d1a91264a8f39a536"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvnc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99293, "scanner": "repobility-docker", "fingerprint": "226cc0c0218af83872d722ea0153d66cf9ae919dee75cc9fc4d67a72a7252903", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|226cc0c0218af83872d722ea0153d66cf9ae919dee75cc9fc4d67a72a7252903"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvips/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99292, "scanner": "repobility-docker", "fingerprint": "cb51f70c76c896c72de974e8b4257202b4fe452f479944dd49ef5dca62d18786", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cb51f70c76c896c72de974e8b4257202b4fe452f479944dd49ef5dca62d18786"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvips/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99290, "scanner": "repobility-docker", "fingerprint": "e712c3b08edd0c1190c0f5a542941d8a0e4c0d8214cc31b64076528b2753e5cf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e712c3b08edd0c1190c0f5a542941d8a0e4c0d8214cc31b64076528b2753e5cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libusb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99289, "scanner": "repobility-docker", "fingerprint": "75d6efe096bca3a9016d634315b20095a614cde9eb5eee651f84b4b62a8a30e7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|75d6efe096bca3a9016d634315b20095a614cde9eb5eee651f84b4b62a8a30e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libusb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99286, "scanner": "repobility-docker", "fingerprint": "5713e5b10a9c0c9a22101b6e39e98db7705e4782f030eff24474016e3ddbcefb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5713e5b10a9c0c9a22101b6e39e98db7705e4782f030eff24474016e3ddbcefb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libunwind/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99285, "scanner": "repobility-docker", "fingerprint": "529a532b8fafe4e88407e3cf0b3fae051d57222c803453371109663fcde62235", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|529a532b8fafe4e88407e3cf0b3fae051d57222c803453371109663fcde62235"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libunwind/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99282, "scanner": "repobility-docker", "fingerprint": "4809ff238ad253ed8869e9451dca3ed4be291f8d63e95e4ac92a126268f90f0c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4809ff238ad253ed8869e9451dca3ed4be291f8d63e95e4ac92a126268f90f0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libultrahdr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99281, "scanner": "repobility-docker", "fingerprint": "e98380e1cb1838a89f1e15243d8686da2cb323a1ab622c106565df88cfbc3387", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e98380e1cb1838a89f1e15243d8686da2cb323a1ab622c106565df88cfbc3387"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libultrahdr/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99278, "scanner": "repobility-docker", "fingerprint": "9deac41525e2a50b75a419d69ab15d357246cb32c0289a15e8fe6644fe81201c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9deac41525e2a50b75a419d69ab15d357246cb32c0289a15e8fe6644fe81201c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libucl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99277, "scanner": "repobility-docker", "fingerprint": "7bc16988fba15051dd4babf0970766b8f667b2eac115aada4503ffc96b115c23", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7bc16988fba15051dd4babf0970766b8f667b2eac115aada4503ffc96b115c23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libucl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99274, "scanner": "repobility-docker", "fingerprint": "50606f92b6c365ccc36e2e8a23cc91205fc42e9f7104e0b74b4cbab96a457866", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|50606f92b6c365ccc36e2e8a23cc91205fc42e9f7104e0b74b4cbab96a457866"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtsm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99273, "scanner": "repobility-docker", "fingerprint": "a3095288d1294e3708d0ca616e387bceb3469ee83f97d1c55075362c85ae6e05", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a3095288d1294e3708d0ca616e387bceb3469ee83f97d1c55075362c85ae6e05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtsm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99270, "scanner": "repobility-docker", "fingerprint": "29a754db5cae03146e12dca5e9d080cd9ced31924658a4b5ae3f3772f8e23886", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|29a754db5cae03146e12dca5e9d080cd9ced31924658a4b5ae3f3772f8e23886"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtpms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99269, "scanner": "repobility-docker", "fingerprint": "fe267f503bc33859ff99baedbc9ff04dc10a1b069c1441fcfb6134478497c8a2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fe267f503bc33859ff99baedbc9ff04dc10a1b069c1441fcfb6134478497c8a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtpms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99266, "scanner": "repobility-docker", "fingerprint": "d98eefd1f671536a5901fa31fa42435e04616b7fafa6d72424d9c1c5f197bf4f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d98eefd1f671536a5901fa31fa42435e04616b7fafa6d72424d9c1c5f197bf4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtorrent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99265, "scanner": "repobility-docker", "fingerprint": "bcf6894e0e32f363ed869ea72dde18c0d2e2541085981a4995529889799a50e9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bcf6894e0e32f363ed869ea72dde18c0d2e2541085981a4995529889799a50e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtorrent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99261, "scanner": "repobility-docker", "fingerprint": "7d4c2f25ab9d50cd9ac031f518a7d4328d112209495efe8a94094092eabf7ef9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d4c2f25ab9d50cd9ac031f518a7d4328d112209495efe8a94094092eabf7ef9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99260, "scanner": "repobility-docker", "fingerprint": "84482e8527838301b3e6efad372416f0d65fb55ebb56c2099cf2778740c44344", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|84482e8527838301b3e6efad372416f0d65fb55ebb56c2099cf2778740c44344"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtiff/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99257, "scanner": "repobility-docker", "fingerprint": "1baa0085407b8f7af77871e5ae8af878896e3c36534f572281b91cdba61d593a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1baa0085407b8f7af77871e5ae8af878896e3c36534f572281b91cdba61d593a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtheora/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99256, "scanner": "repobility-docker", "fingerprint": "366ffb16a8b709ea6658e7182bae7f92cc016bb142c4a9278c8d7c4dadd9b65c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|366ffb16a8b709ea6658e7182bae7f92cc016bb142c4a9278c8d7c4dadd9b65c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtheora/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99253, "scanner": "repobility-docker", "fingerprint": "2b3918bd4a7a973fa982749051d8778fbd9fc2d7eb73166409d345f362e41c74", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b3918bd4a7a973fa982749051d8778fbd9fc2d7eb73166409d345f362e41c74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libteken/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99252, "scanner": "repobility-docker", "fingerprint": "44f110a3801b8bdae1524b66c24ed893579f28cf5c2b180f8c2708161ae0e299", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|44f110a3801b8bdae1524b66c24ed893579f28cf5c2b180f8c2708161ae0e299"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libteken/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99249, "scanner": "repobility-docker", "fingerprint": "8d0785dc26bbe9a87801df592ad624ece0453a95d6da71fa371d1c483f47757d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8d0785dc26bbe9a87801df592ad624ece0453a95d6da71fa371d1c483f47757d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtasn1/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99248, "scanner": "repobility-docker", "fingerprint": "7e7b34db671b9e488632df6fb177ad1c0b3fae7616f7d83d0f00d9aeb00a7737", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7e7b34db671b9e488632df6fb177ad1c0b3fae7616f7d83d0f00d9aeb00a7737"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libtasn1/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99244, "scanner": "repobility-docker", "fingerprint": "1f81571f8467461895112586d157f93dfa5882ea2dd39324bde6e228953261e3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1f81571f8467461895112586d157f93dfa5882ea2dd39324bde6e228953261e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libstdcpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99243, "scanner": "repobility-docker", "fingerprint": "ffc5293589ed7c32169729d77b782a116ef3f44d42467c216df27a03c6f18d2f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ffc5293589ed7c32169729d77b782a116ef3f44d42467c216df27a03c6f18d2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libstdcpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99238, "scanner": "repobility-docker", "fingerprint": "99a17c76714da0122fb498256a6cac1298ebc22c691f652e544c160935544e05", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|99a17c76714da0122fb498256a6cac1298ebc22c691f652e544c160935544e05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99237, "scanner": "repobility-docker", "fingerprint": "df86eca0fa894e575c7d2a5795acd08d2692c267733ab7cada8daaef8a9ab792", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df86eca0fa894e575c7d2a5795acd08d2692c267733ab7cada8daaef8a9ab792"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99234, "scanner": "repobility-docker", "fingerprint": "8458f13315f82bbb50bad04f91f243e6b9a544c8295588e97343a932f2f9a885", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8458f13315f82bbb50bad04f91f243e6b9a544c8295588e97343a932f2f9a885"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsrtp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99233, "scanner": "repobility-docker", "fingerprint": "899139df6590044ef75a9167297278b6c2dafa683820aa20d7d25b2ccdce3453", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|899139df6590044ef75a9167297278b6c2dafa683820aa20d7d25b2ccdce3453"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsrtp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99230, "scanner": "repobility-docker", "fingerprint": "a07fde54c00bed4b53b192b5413ebb982c209c1034c51ca021de2644185f7efe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a07fde54c00bed4b53b192b5413ebb982c209c1034c51ca021de2644185f7efe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspng/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99229, "scanner": "repobility-docker", "fingerprint": "cd3f9d5e4d6a4ec807a2ac1129e33264f862a3f21006a96b1b04ad23abf1d667", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cd3f9d5e4d6a4ec807a2ac1129e33264f862a3f21006a96b1b04ad23abf1d667"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspng/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99226, "scanner": "repobility-docker", "fingerprint": "e46547ea41c833a46dc2b4bd912ced76d8f7dbd461a96a0cd54be64e9168149e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e46547ea41c833a46dc2b4bd912ced76d8f7dbd461a96a0cd54be64e9168149e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspectre/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99225, "scanner": "repobility-docker", "fingerprint": "e5330baf4f1a736786b892c987d3bb706e425006a74d6e1503964d358967e807", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e5330baf4f1a736786b892c987d3bb706e425006a74d6e1503964d358967e807"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspectre/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99222, "scanner": "repobility-docker", "fingerprint": "fbddb17a703cad39b859ebfba7a90896052e944aa601cf6d22105127bb1f104b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbddb17a703cad39b859ebfba7a90896052e944aa601cf6d22105127bb1f104b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspdm/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99221, "scanner": "repobility-docker", "fingerprint": "0f1b0320962974f45de01f9def7234a53e42aa11de4562e0864f5a4c21b958bf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0f1b0320962974f45de01f9def7234a53e42aa11de4562e0864f5a4c21b958bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libspdm/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99218, "scanner": "repobility-docker", "fingerprint": "4fa20135004bfe5b55f0c09c3fdaf79c524969082db75836c844a8a8336cf4cf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4fa20135004bfe5b55f0c09c3fdaf79c524969082db75836c844a8a8336cf4cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsoup/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99217, "scanner": "repobility-docker", "fingerprint": "295e6a8ebbe138a08839757a560f909c7277baef5bd42c617229b0a816a21b82", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|295e6a8ebbe138a08839757a560f909c7277baef5bd42c617229b0a816a21b82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsoup/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99215, "scanner": "repobility-docker", "fingerprint": "3e36093c2db2c71cbfde6747e52b485663869998b4ec148eb9187f9b7916ca28", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e36093c2db2c71cbfde6747e52b485663869998b4ec148eb9187f9b7916ca28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsodium/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99214, "scanner": "repobility-docker", "fingerprint": "c23ba070be6b9621f6e21ddfd3fd952abbf85bfdf663793be79b2011895f4fd2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c23ba070be6b9621f6e21ddfd3fd952abbf85bfdf663793be79b2011895f4fd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsodium/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99209, "scanner": "repobility-docker", "fingerprint": "432ca1237228a846b07fc9711c037cc0a930fa5bf9cd6d148ed7cc29bcb5d8e7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|432ca1237228a846b07fc9711c037cc0a930fa5bf9cd6d148ed7cc29bcb5d8e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsass/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99208, "scanner": "repobility-docker", "fingerprint": "a26904b13987d53cf36513bdc1a4095c4113db0da0d1e7aa43ccf9f67b0e9abf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a26904b13987d53cf36513bdc1a4095c4113db0da0d1e7aa43ccf9f67b0e9abf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libsass/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99203, "scanner": "repobility-docker", "fingerprint": "fcc3f1bcdf49502500e28848a91b05a25d9be4b5a422c1f8dee583aa104e3bd6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fcc3f1bcdf49502500e28848a91b05a25d9be4b5a422c1f8dee583aa104e3bd6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libressl/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99202, "scanner": "repobility-docker", "fingerprint": "5c4a396a16ae2534cde51a488e8d8ac7cc8828f75af8c2767593be5fd43fd873", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5c4a396a16ae2534cde51a488e8d8ac7cc8828f75af8c2767593be5fd43fd873"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libressl/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99200, "scanner": "repobility-docker", "fingerprint": "1d56b6c871fb1ded546f319afa803287ef6836ea0477c74f3317b2dafba1f22f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1d56b6c871fb1ded546f319afa803287ef6836ea0477c74f3317b2dafba1f22f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99199, "scanner": "repobility-docker", "fingerprint": "1b81f2bca4d22bea456a347d4147472875314b2d3a13662d2d7cbb53c8876437", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1b81f2bca4d22bea456a347d4147472875314b2d3a13662d2d7cbb53c8876437"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99198, "scanner": "repobility-docker", "fingerprint": "e9111f174b3b6d30663f6874c98c683f8535ca88543e8836266c3e3b01c82c5a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9111f174b3b6d30663f6874c98c683f8535ca88543e8836266c3e3b01c82c5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99197, "scanner": "repobility-docker", "fingerprint": "83f2d7d5365888e24cf4c03102b6afcb423338b53b42c1fa5fa4963f3b19814f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|83f2d7d5365888e24cf4c03102b6afcb423338b53b42c1fa5fa4963f3b19814f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libreoffice/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99194, "scanner": "repobility-docker", "fingerprint": "aab4bdc6e4a50f2a4849d5fbbb9ac4cf28a1a58adb353420e0101f1f49111e4b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aab4bdc6e4a50f2a4849d5fbbb9ac4cf28a1a58adb353420e0101f1f49111e4b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libredwg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99193, "scanner": "repobility-docker", "fingerprint": "49eef94f2dee40946e5596dc801e5815d66e940583a9c56cda0c83e315b10aaf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|49eef94f2dee40946e5596dc801e5815d66e940583a9c56cda0c83e315b10aaf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libredwg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99190, "scanner": "repobility-docker", "fingerprint": "b2df7b8250a5b2d46654d542fff31b3c6ed8b8c9aded3aafe52002e3e1d35ad1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2df7b8250a5b2d46654d542fff31b3c6ed8b8c9aded3aafe52002e3e1d35ad1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librdkafka/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99189, "scanner": "repobility-docker", "fingerprint": "0a673bd66a0af7651ad9d4238dffd78d96a3043808e8f4f4f7fe14a0bd27e5f3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0a673bd66a0af7651ad9d4238dffd78d96a3043808e8f4f4f7fe14a0bd27e5f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librdkafka/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99186, "scanner": "repobility-docker", "fingerprint": "4cbc050ce9b711900dbf00e329f2e58d441df4b1a6bbffc0dc3f3a2831171877", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4cbc050ce9b711900dbf00e329f2e58d441df4b1a6bbffc0dc3f3a2831171877"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librawspeed/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99185, "scanner": "repobility-docker", "fingerprint": "43313f95cea7703c83f4e4170929c19968c41de2c6a13d3c6e595f90792e12bb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|43313f95cea7703c83f4e4170929c19968c41de2c6a13d3c6e595f90792e12bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/librawspeed/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99179, "scanner": "repobility-docker", "fingerprint": "25668021c962f9a250a10cc2ee5229e18cc636b4f78de8210f1018db31864b2f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|25668021c962f9a250a10cc2ee5229e18cc636b4f78de8210f1018db31864b2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99178, "scanner": "repobility-docker", "fingerprint": "7c0729522d7f1dcd8674ea7c27d43f2c25b3fb126794606c5b1c2988f2719223", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7c0729522d7f1dcd8674ea7c27d43f2c25b3fb126794606c5b1c2988f2719223"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99175, "scanner": "repobility-docker", "fingerprint": "b737badd18f6d195e37c22b39e226d0d88646d5f217cf9b48702ad41b35e89b3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b737badd18f6d195e37c22b39e226d0d88646d5f217cf9b48702ad41b35e89b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libra/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99174, "scanner": "repobility-docker", "fingerprint": "8993afc7c1be609859530360b41c5a872e21126eef6888ff5d39051591090e48", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8993afc7c1be609859530360b41c5a872e21126eef6888ff5d39051591090e48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libra/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99172, "scanner": "repobility-docker", "fingerprint": "f11553ec792b8cc9e02f48c44528e5cee4c905695e2651cb1989001a54010c9d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f11553ec792b8cc9e02f48c44528e5cee4c905695e2651cb1989001a54010c9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpsl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99171, "scanner": "repobility-docker", "fingerprint": "1f398ede3ee9f6b8a6ed03cb951fbb7ed6f52ede0ad01e77d43c18c70a2053ca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1f398ede3ee9f6b8a6ed03cb951fbb7ed6f52ede0ad01e77d43c18c70a2053ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpsl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99168, "scanner": "repobility-docker", "fingerprint": "0094f1491d126eb628e14f4a70eb7479ad31cc6849d4d98d017ca1db609abcfc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0094f1491d126eb628e14f4a70eb7479ad31cc6849d4d98d017ca1db609abcfc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libprotobuf-mutator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99167, "scanner": "repobility-docker", "fingerprint": "e2d9d921173fe5c341b1821b9481ffa9d86ff3533a3041bbcca65a6af0f96c77", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e2d9d921173fe5c341b1821b9481ffa9d86ff3533a3041bbcca65a6af0f96c77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libprotobuf-mutator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99165, "scanner": "repobility-docker", "fingerprint": "f28afd8eb8ba5daf1d079ae5360bf416620564f182628bbcc947b64bbf8532f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f28afd8eb8ba5daf1d079ae5360bf416620564f182628bbcc947b64bbf8532f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng-proto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99164, "scanner": "repobility-docker", "fingerprint": "17e4d499798d69d1ab8dd7732a2c0da6ae98c9774991032997c3803ec9bddee4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|17e4d499798d69d1ab8dd7732a2c0da6ae98c9774991032997c3803ec9bddee4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng-proto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99161, "scanner": "repobility-docker", "fingerprint": "72b0657396d9158c6c4e56e21264bbde5d1ec1c84c2dd55b27c6804bb59216fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|72b0657396d9158c6c4e56e21264bbde5d1ec1c84c2dd55b27c6804bb59216fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99160, "scanner": "repobility-docker", "fingerprint": "483fbb43d9ca08402ed9243da493b8de124eaecde0fc33a6bed89d693de58d88", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|483fbb43d9ca08402ed9243da493b8de124eaecde0fc33a6bed89d693de58d88"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99157, "scanner": "repobility-docker", "fingerprint": "8b24c966529984e692c7c7d743926a9e9da8958843140e279a7ceee83a939abb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8b24c966529984e692c7c7d743926a9e9da8958843140e279a7ceee83a939abb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libplist/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99156, "scanner": "repobility-docker", "fingerprint": "15c5a1dfb6de8fff206aee9a9b57112f818d2fcc28de439decdebefdc9266865", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|15c5a1dfb6de8fff206aee9a9b57112f818d2fcc28de439decdebefdc9266865"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libplist/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99153, "scanner": "repobility-docker", "fingerprint": "68320646fa18906ebd2090f19f199c1dd5b88e2293cfcc43ffb4c541cca6845e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|68320646fa18906ebd2090f19f199c1dd5b88e2293cfcc43ffb4c541cca6845e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libphonenumber/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99152, "scanner": "repobility-docker", "fingerprint": "55c13d21e5faebc062692e98de6345c5f05dd56ba25f753b3542e7d02e7535f7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|55c13d21e5faebc062692e98de6345c5f05dd56ba25f753b3542e7d02e7535f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libphonenumber/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99147, "scanner": "repobility-docker", "fingerprint": "e7f4b379f4dabae278ca710bedf911d2b6992ba5941fc517c15dbf169eb20a88", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e7f4b379f4dabae278ca710bedf911d2b6992ba5941fc517c15dbf169eb20a88"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpcap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99146, "scanner": "repobility-docker", "fingerprint": "a07061eff93426bc8468b2806f583fbe13d065cc93e5826a1b1433483dec51e8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a07061eff93426bc8468b2806f583fbe13d065cc93e5826a1b1433483dec51e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libpcap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99143, "scanner": "repobility-docker", "fingerprint": "d6e1a8c1015d2b9130610adcad2c11788e6d6f6054c881e16d0723faaa8455d9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d6e1a8c1015d2b9130610adcad2c11788e6d6f6054c881e16d0723faaa8455d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liboqs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99142, "scanner": "repobility-docker", "fingerprint": "a2ba6a492e6225994b8328fd6ec30a5452d613238a23d1bd8b24d1b5113c9e47", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a2ba6a492e6225994b8328fd6ec30a5452d613238a23d1bd8b24d1b5113c9e47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liboqs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99139, "scanner": "repobility-docker", "fingerprint": "383f793edc196e9b944e123450206b9b7bd6d86ecf6c36fd21059cc9e9262ad5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|383f793edc196e9b944e123450206b9b7bd6d86ecf6c36fd21059cc9e9262ad5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmpeg2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99138, "scanner": "repobility-docker", "fingerprint": "77687da9920d374a23504a6830d81811740042f29efa3cb993523f9c20ac1738", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|77687da9920d374a23504a6830d81811740042f29efa3cb993523f9c20ac1738"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmpeg2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99135, "scanner": "repobility-docker", "fingerprint": "b7e4ce9ad78cc40a3c363ef119767fc95e1c9929e8c44b693dd5259d0057aa1a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7e4ce9ad78cc40a3c363ef119767fc95e1c9929e8c44b693dd5259d0057aa1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmodbus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99134, "scanner": "repobility-docker", "fingerprint": "90c2e2d300dec547dfb299632072eae6a0ec1bcb7065a35adc51933984d286e2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|90c2e2d300dec547dfb299632072eae6a0ec1bcb7065a35adc51933984d286e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmodbus/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99131, "scanner": "repobility-docker", "fingerprint": "707d18350fd15c70d31dc4ad86c064ec8a14dde7f7564be635140055ba5d9bc4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|707d18350fd15c70d31dc4ad86c064ec8a14dde7f7564be635140055ba5d9bc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmicrohttpd2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99130, "scanner": "repobility-docker", "fingerprint": "5c26c1dc60e8ed91d9da237bde349a59f06c57b106affc774897faa0cc7dd287", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5c26c1dc60e8ed91d9da237bde349a59f06c57b106affc774897faa0cc7dd287"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libmicrohttpd2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99128, "scanner": "repobility-docker", "fingerprint": "bf4b52f248c20b450cf7d4778af74b6f6bfe4e6192b8f1affda688a5997195ad", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bf4b52f248c20b450cf7d4778af74b6f6bfe4e6192b8f1affda688a5997195ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liblouis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99127, "scanner": "repobility-docker", "fingerprint": "df55bf501a64d2db11034ecd64f5c04af149ae4ac55d7825f5c25ec64d97318f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df55bf501a64d2db11034ecd64f5c04af149ae4ac55d7825f5c25ec64d97318f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/liblouis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99124, "scanner": "repobility-docker", "fingerprint": "8fe336a8b36e78ead7c5b372ed43c430ca7c210bfac1ec09ca34f4752eb6619f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8fe336a8b36e78ead7c5b372ed43c430ca7c210bfac1ec09ca34f4752eb6619f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libldac/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99123, "scanner": "repobility-docker", "fingerprint": "c9d38f19758a33d02f3cf5516dbeeb1bd45776cbfdc84293bed397a9847e46bf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9d38f19758a33d02f3cf5516dbeeb1bd45776cbfdc84293bed397a9847e46bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libldac/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99122, "scanner": "repobility-docker", "fingerprint": "0b39e80b21ed5b1cbf97ea90238b5b6808600fcde0a74908db1e6dc3c86324cd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0b39e80b21ed5b1cbf97ea90238b5b6808600fcde0a74908db1e6dc3c86324cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libldac/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99119, "scanner": "repobility-docker", "fingerprint": "d64db9b8505af95126e051dc9016e8ee82d79f62616805cdef7579fcc4deb128", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d64db9b8505af95126e051dc9016e8ee82d79f62616805cdef7579fcc4deb128"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjxl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99118, "scanner": "repobility-docker", "fingerprint": "d40c5fa6d68635a4d878c9ff1d73def81c1283ead09d611cefcc76f7f3f94dd2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d40c5fa6d68635a4d878c9ff1d73def81c1283ead09d611cefcc76f7f3f94dd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjxl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99115, "scanner": "repobility-docker", "fingerprint": "9f54bf9ae0f700bf7aee45ed7e81d06593ee2dca2a251725e388e5cb8ded5497", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f54bf9ae0f700bf7aee45ed7e81d06593ee2dca2a251725e388e5cb8ded5497"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjpeg-turbo/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99114, "scanner": "repobility-docker", "fingerprint": "20694e962657e0f0ace1995b102834c87dd531bbb954ec08d9c97dbfe39e8391", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|20694e962657e0f0ace1995b102834c87dd531bbb954ec08d9c97dbfe39e8391"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libjpeg-turbo/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99111, "scanner": "repobility-docker", "fingerprint": "c2453288268f517826cb98d89ff7ef9a57f874f6c309ed014909e4aacb7d1e47", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c2453288268f517826cb98d89ff7ef9a57f874f6c309ed014909e4aacb7d1e47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libigl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99110, "scanner": "repobility-docker", "fingerprint": "36e370889e45a00cd25cf948570e50824f2f70500fcc3baeacd0af0d64f824b4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|36e370889e45a00cd25cf948570e50824f2f70500fcc3baeacd0af0d64f824b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libigl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99105, "scanner": "repobility-docker", "fingerprint": "d81201eb3c427a1e2a09c8a8e59cb3ca5be434f3dd2353ff80dfecbd7fcc98fc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d81201eb3c427a1e2a09c8a8e59cb3ca5be434f3dd2353ff80dfecbd7fcc98fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99104, "scanner": "repobility-docker", "fingerprint": "b73bb1d2d2143e81f29bc50f67319861e8e9b9065b72bd5b82619680c0dc9e8a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b73bb1d2d2143e81f29bc50f67319861e8e9b9065b72bd5b82619680c0dc9e8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99101, "scanner": "repobility-docker", "fingerprint": "88bcd211325daab67d215aa5c05b6e75bdb391efc86eff8423a8c552efb0f991", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|88bcd211325daab67d215aa5c05b6e75bdb391efc86eff8423a8c552efb0f991"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99100, "scanner": "repobility-docker", "fingerprint": "69a9b9c1df4cf706c5cdef7dd872d9cbd100589bc4cc690dba2e613e1333eebc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|69a9b9c1df4cf706c5cdef7dd872d9cbd100589bc4cc690dba2e613e1333eebc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libidn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99097, "scanner": "repobility-docker", "fingerprint": "9ddefccf8796adaf6bb3971cdda42de0dea091d577d75cf1f82a99cdd3860615", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ddefccf8796adaf6bb3971cdda42de0dea091d577d75cf1f82a99cdd3860615"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libical/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99094, "scanner": "repobility-docker", "fingerprint": "2b3fac9a4e320b912e7e22d2100da9a634da552a71ef916710a3d6ffae15c395", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2b3fac9a4e320b912e7e22d2100da9a634da552a71ef916710a3d6ffae15c395"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhtp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99093, "scanner": "repobility-docker", "fingerprint": "73c4c4964ff302fcdc5aae900cfc1b4f772b0f96002cc76437cfcc601105cc77", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|73c4c4964ff302fcdc5aae900cfc1b4f772b0f96002cc76437cfcc601105cc77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhtp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99089, "scanner": "repobility-docker", "fingerprint": "ea4860aae49db906c0bcb6a091c025adfea93e666471f10d4c13269d7a0af0f5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea4860aae49db906c0bcb6a091c025adfea93e666471f10d4c13269d7a0af0f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhevc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99088, "scanner": "repobility-docker", "fingerprint": "7df8d5a94c2796f65f5ab95450a96263c0cfa9277dbe106143e45b801c163c5b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7df8d5a94c2796f65f5ab95450a96263c0cfa9277dbe106143e45b801c163c5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libhevc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99083, "scanner": "repobility-docker", "fingerprint": "75fc14874f9c7dcff26f5f4c82c870966efd4f5528fd92235cf1aab15863bc84", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75fc14874f9c7dcff26f5f4c82c870966efd4f5528fd92235cf1aab15863bc84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgit2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99082, "scanner": "repobility-docker", "fingerprint": "4963dbcdc47dc0b6c90f9da5ab38d8b53678e7a7115f52749231fab3fdc7934d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4963dbcdc47dc0b6c90f9da5ab38d8b53678e7a7115f52749231fab3fdc7934d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgit2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99079, "scanner": "repobility-docker", "fingerprint": "c8433b5a9b64a9596b0b2bb610678b186f2de8a438468156ffd0c10d243914a6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c8433b5a9b64a9596b0b2bb610678b186f2de8a438468156ffd0c10d243914a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99078, "scanner": "repobility-docker", "fingerprint": "31d885115bb19323f9e4dd0ae8aa0db27300a6036a54081f7bf12c7193e91cff", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|31d885115bb19323f9e4dd0ae8aa0db27300a6036a54081f7bf12c7193e91cff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 99075, "scanner": "repobility-docker", "fingerprint": "7d0f3a0576fb4c7ebada488a1681369f93432f178d017b5e06e7fcb8f5a0c718", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7d0f3a0576fb4c7ebada488a1681369f93432f178d017b5e06e7fcb8f5a0c718"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfuse/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99074, "scanner": "repobility-docker", "fingerprint": "2a150130b6bdadc4e6934275919709e91d8a248ac891b45e83cbec1d69cf9727", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2a150130b6bdadc4e6934275919709e91d8a248ac891b45e83cbec1d69cf9727"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfuse/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99073, "scanner": "repobility-docker", "fingerprint": "47f2cc6e965c04bbc3c1a70f4db6ec50dda9770f326a28664e3d146d6ac2f2a7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|47f2cc6e965c04bbc3c1a70f4db6ec50dda9770f326a28664e3d146d6ac2f2a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfuse/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99069, "scanner": "repobility-docker", "fingerprint": "820e0ea2e744e17e28f3b9e1a04818c95568666befbabedfb7a46d8de21e1733", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|820e0ea2e744e17e28f3b9e1a04818c95568666befbabedfb7a46d8de21e1733"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99068, "scanner": "repobility-docker", "fingerprint": "abdc7bf2003c65fcaa7d4c9e0cd7ea05d72994afc7ec259ab56331b6e866aef0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|abdc7bf2003c65fcaa7d4c9e0cd7ea05d72994afc7ec259ab56331b6e866aef0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99067, "scanner": "repobility-docker", "fingerprint": "46ad7f3c618a777c9e5ea35fd0c23e366bd1b6122aad960d54ac0b1cc2cd4ed3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|46ad7f3c618a777c9e5ea35fd0c23e366bd1b6122aad960d54ac0b1cc2cd4ed3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99062, "scanner": "repobility-docker", "fingerprint": "8f226a66f376f174f79d6e027ffd8ef50ad878cf36bb06764c143866c7917071", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8f226a66f376f174f79d6e027ffd8ef50ad878cf36bb06764c143866c7917071"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libexif/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99061, "scanner": "repobility-docker", "fingerprint": "993701038d101f91c83ff970e3136fd0c38131e1f05c725cdbccd3222ff1073d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|993701038d101f91c83ff970e3136fd0c38131e1f05c725cdbccd3222ff1073d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libexif/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99058, "scanner": "repobility-docker", "fingerprint": "9bb190aa0239752cda1e1797b799fc4c02443f4ab1ff4157c19b131e30ec78f2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9bb190aa0239752cda1e1797b799fc4c02443f4ab1ff4157c19b131e30ec78f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libevent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99057, "scanner": "repobility-docker", "fingerprint": "adb22aef29ba3f74c6f2988f05add161f9c41d6711e9fa4d3a3bdf77f75dd4d6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|adb22aef29ba3f74c6f2988f05add161f9c41d6711e9fa4d3a3bdf77f75dd4d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libevent/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99054, "scanner": "repobility-docker", "fingerprint": "b25515aeced5b76501a53e4894a556536d496d95d87ed8b79c15a9a05cc6bdbc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b25515aeced5b76501a53e4894a556536d496d95d87ed8b79c15a9a05cc6bdbc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libecc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99053, "scanner": "repobility-docker", "fingerprint": "8c428f5e7b6e749ccd68321caa48ac1a6a13ae653737ab1427c73b9db2984e40", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8c428f5e7b6e749ccd68321caa48ac1a6a13ae653737ab1427c73b9db2984e40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libecc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99051, "scanner": "repobility-docker", "fingerprint": "d259be41536e30ea1dcfc8f5dc85fb5d8ad9c04e27bb6ce9631e2967eda689e0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d259be41536e30ea1dcfc8f5dc85fb5d8ad9c04e27bb6ce9631e2967eda689e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libdwarf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99048, "scanner": "repobility-docker", "fingerprint": "6e17c7f895b2128345fc9897c6f178352c37b0897a117210871edf7a4a50de28", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6e17c7f895b2128345fc9897c6f178352c37b0897a117210871edf7a4a50de28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcups/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99047, "scanner": "repobility-docker", "fingerprint": "6f12f13d7118cb0c94db4684ee406da97235c4d7924dc08f2ad16a32ff244215", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6f12f13d7118cb0c94db4684ee406da97235c4d7924dc08f2ad16a32ff244215"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcups/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99044, "scanner": "repobility-docker", "fingerprint": "526957200a988dfb4c60def3edd30b1ebf3239df28b7b2d4387a53e8b7bca191", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|526957200a988dfb4c60def3edd30b1ebf3239df28b7b2d4387a53e8b7bca191"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcue/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99043, "scanner": "repobility-docker", "fingerprint": "2773310034119185a51a184dec02f58c264b09bda2cca25bfd83ba1764e9200f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2773310034119185a51a184dec02f58c264b09bda2cca25bfd83ba1764e9200f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcue/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99039, "scanner": "repobility-docker", "fingerprint": "b67f6971231a366a6c8fe7f9de940ad9b06291174a22067760b917213834791b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b67f6971231a366a6c8fe7f9de940ad9b06291174a22067760b917213834791b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcst/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99036, "scanner": "repobility-docker", "fingerprint": "642cfbdcec0bca319bd3f14b39538c7e51723065469c662abdbb9521c450ce83", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|642cfbdcec0bca319bd3f14b39538c7e51723065469c662abdbb9521c450ce83"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libconfig/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99035, "scanner": "repobility-docker", "fingerprint": "093556b3550d0214f2fb45e04e0369615293d46f97ecfc85b83bc7cd494728a2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|093556b3550d0214f2fb45e04e0369615293d46f97ecfc85b83bc7cd494728a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libconfig/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99032, "scanner": "repobility-docker", "fingerprint": "09cdf190775e892db3ded664ab857385c3cd3e165e8dfa582eeffae0c72b6c5b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|09cdf190775e892db3ded664ab857385c3cd3e165e8dfa582eeffae0c72b6c5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcoap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99031, "scanner": "repobility-docker", "fingerprint": "f6a517bfd9949bc790d48ccee8994d5a3281bafa82e2b7d38fa5a7d180092150", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f6a517bfd9949bc790d48ccee8994d5a3281bafa82e2b7d38fa5a7d180092150"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcoap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99028, "scanner": "repobility-docker", "fingerprint": "0711f3bc5c177b6db2dc126bf594e5126de73cb2bb3bca4544028d51e5f4aec6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0711f3bc5c177b6db2dc126bf594e5126de73cb2bb3bca4544028d51e5f4aec6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcbor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99027, "scanner": "repobility-docker", "fingerprint": "2860b91314a647ea79bc30589603d024a3303d69bdb78a4b61762854cd6bb4e9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2860b91314a647ea79bc30589603d024a3303d69bdb78a4b61762854cd6bb4e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcbor/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99024, "scanner": "repobility-docker", "fingerprint": "d8ba565d82242236c0b147beb60619e5a9c655b7dd98d4fa6cec72b545e29dab", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d8ba565d82242236c0b147beb60619e5a9c655b7dd98d4fa6cec72b545e29dab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcacard/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99023, "scanner": "repobility-docker", "fingerprint": "39b123bf6590d076f4bfe88b7393624c476848b72a0f49142a1f2a5d916b6d96", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|39b123bf6590d076f4bfe88b7393624c476848b72a0f49142a1f2a5d916b6d96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcacard/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99020, "scanner": "repobility-docker", "fingerprint": "fe553da0e1d3cb87d0a780a0e146db01314e774355efb0eb8538cfe259741dd0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fe553da0e1d3cb87d0a780a0e146db01314e774355efb0eb8538cfe259741dd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libbpf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99017, "scanner": "repobility-docker", "fingerprint": "dee14dd33612e04120a456dceb1073161f00d94968cc81a6bbb93ed6bef25cf9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dee14dd33612e04120a456dceb1073161f00d94968cc81a6bbb93ed6bef25cf9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavif/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99013, "scanner": "repobility-docker", "fingerprint": "d809cbda5b70e2accbd98e03e030e3d955817726e06bdb4dee8f5eeb4cdf296a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d809cbda5b70e2accbd98e03e030e3d955817726e06bdb4dee8f5eeb4cdf296a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99012, "scanner": "repobility-docker", "fingerprint": "3e1237fbd483751b1f893dc4ddf9d08b7257830a7592c8760ea86f62f241055e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3e1237fbd483751b1f893dc4ddf9d08b7257830a7592c8760ea86f62f241055e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libavc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99009, "scanner": "repobility-docker", "fingerprint": "53d64072fe78f28cc13030943620e4a3add9bc3d0cca925a43f7c95dc3355a23", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53d64072fe78f28cc13030943620e4a3add9bc3d0cca925a43f7c95dc3355a23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libass/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99008, "scanner": "repobility-docker", "fingerprint": "5b691514955b33253e73bf2cd70727e01a1934e71dd01050988ebbfa779544e5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5b691514955b33253e73bf2cd70727e01a1934e71dd01050988ebbfa779544e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libass/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99005, "scanner": "repobility-docker", "fingerprint": "e493ed62421afdaeadca5d194aa78f5004b7fdcb19dd073eb5c01137584c6ce6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e493ed62421afdaeadca5d194aa78f5004b7fdcb19dd073eb5c01137584c6ce6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libarchive/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 99004, "scanner": "repobility-docker", "fingerprint": "8888b5922d865715fbee74c7854b2c37c5bc24ccad1c806ac4d2b214b63fb8d9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8888b5922d865715fbee74c7854b2c37c5bc24ccad1c806ac4d2b214b63fb8d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libarchive/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 99003, "scanner": "repobility-docker", "fingerprint": "d73fe7803baccc596ee17e1e0a22a37b19d229e535712004dc07207a88aa0ec9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d73fe7803baccc596ee17e1e0a22a37b19d229e535712004dc07207a88aa0ec9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libarchive/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98999, "scanner": "repobility-docker", "fingerprint": "ee8dfc2ccf83abebf10bdc470167280e6a0b3323124f8fbb5479f61a9d48ed78", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee8dfc2ccf83abebf10bdc470167280e6a0b3323124f8fbb5479f61a9d48ed78"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98998, "scanner": "repobility-docker", "fingerprint": "be26f949b3e7385b97399b7bf28daadfe9339334ab12a9eae7499c68eb268ffc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|be26f949b3e7385b97399b7bf28daadfe9339334ab12a9eae7499c68eb268ffc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98995, "scanner": "repobility-docker", "fingerprint": "160b7cd02c72898dbd366ef1cdda8d0d1f358099fabe05cf7fea023ac5f025fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|160b7cd02c72898dbd366ef1cdda8d0d1f358099fabe05cf7fea023ac5f025fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leveldb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98994, "scanner": "repobility-docker", "fingerprint": "6b79ab084bfe48b808aa24a020635d65fe562d38b305321bf4da9f7aa8c69887", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6b79ab084bfe48b808aa24a020635d65fe562d38b305321bf4da9f7aa8c69887"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leveldb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98991, "scanner": "repobility-docker", "fingerprint": "84c005020ca06f763cf107292a5e05468ef9dc5b2f56bb01b05bfcecf90eb3b1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84c005020ca06f763cf107292a5e05468ef9dc5b2f56bb01b05bfcecf90eb3b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leptonica/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98990, "scanner": "repobility-docker", "fingerprint": "c0d392f7b4aea64538257aa48b86e58bef76bfe1b7501b4cd560dfab5407475b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c0d392f7b4aea64538257aa48b86e58bef76bfe1b7501b4cd560dfab5407475b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/leptonica/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98987, "scanner": "repobility-docker", "fingerprint": "6398aa161427bbf221b8b77645458283ebf36a3da269af3760d16b751dcee7b0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6398aa161427bbf221b8b77645458283ebf36a3da269af3760d16b751dcee7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lcms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98986, "scanner": "repobility-docker", "fingerprint": "d93cf835490034cc2be4237e6831560655a7fc73aa697f7e9025db0c6e6135fa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d93cf835490034cc2be4237e6831560655a7fc73aa697f7e9025db0c6e6135fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lcms/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98981, "scanner": "repobility-docker", "fingerprint": "e9bdc0f7acde85eff296a0555e05d3537bdc7539498340ff2bd7323eb4eb0c55", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e9bdc0f7acde85eff296a0555e05d3537bdc7539498340ff2bd7323eb4eb0c55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lame/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98980, "scanner": "repobility-docker", "fingerprint": "68a66f9c0d756cc716850bb35887fda5fb3d9063d7a70ce6308ace2f74475b05", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|68a66f9c0d756cc716850bb35887fda5fb3d9063d7a70ce6308ace2f74475b05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lame/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98975, "scanner": "repobility-docker", "fingerprint": "b7eac19bc58ced86441377f5f1e8a891dc9a49a32b6e508c10f461c68ea62bcb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b7eac19bc58ced86441377f5f1e8a891dc9a49a32b6e508c10f461c68ea62bcb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubevirt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98974, "scanner": "repobility-docker", "fingerprint": "318fafb926b09924e7845fa361005408d3f0fe309528674a9919bfdc5baeb2e8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|318fafb926b09924e7845fa361005408d3f0fe309528674a9919bfdc5baeb2e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kubevirt/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98954, "scanner": "repobility-docker", "fingerprint": "73df000cc9ef2b93e5f01e2b0262a3555d4e277df3e611646362080fafe1d9c1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73df000cc9ef2b93e5f01e2b0262a3555d4e277df3e611646362080fafe1d9c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/krb5/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98953, "scanner": "repobility-docker", "fingerprint": "669769e3fda55251c1119cf7d2c4759ab45931d64bb9945fb9e91aa2483028f8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|669769e3fda55251c1119cf7d2c4759ab45931d64bb9945fb9e91aa2483028f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/krb5/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98950, "scanner": "repobility-docker", "fingerprint": "b2cf64d61faefe9b8dd925014a500985f680350900628a81a5ae20c812753941", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2cf64d61faefe9b8dd925014a500985f680350900628a81a5ae20c812753941"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/knot-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98949, "scanner": "repobility-docker", "fingerprint": "7e68cbcde02dff7d46f6ea2a2e2f115ae1cda7e6a8362f04dd0f6649b87c247e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7e68cbcde02dff7d46f6ea2a2e2f115ae1cda7e6a8362f04dd0f6649b87c247e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/knot-dns/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98943, "scanner": "repobility-docker", "fingerprint": "7d9c7da383088eade6f62ed894dc8359c81475884589ee0fa2a0b9e0e5fb67f5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d9c7da383088eade6f62ed894dc8359c81475884589ee0fa2a0b9e0e5fb67f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kiwisolver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98942, "scanner": "repobility-docker", "fingerprint": "fb0802ba9123ee42ec0af17a8fdb80fe854d97ba5a888e0faf6b90dd5d142a76", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fb0802ba9123ee42ec0af17a8fdb80fe854d97ba5a888e0faf6b90dd5d142a76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kiwisolver/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98935, "scanner": "repobility-docker", "fingerprint": "3cc12f6eb927d2c1cd9783feec51d49fc4dc6259ea0b8cd701d2dd787d3d316e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3cc12f6eb927d2c1cd9783feec51d49fc4dc6259ea0b8cd701d2dd787d3d316e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keystone/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98934, "scanner": "repobility-docker", "fingerprint": "397908c77fb075ea8b1108e319e036760f4854e32c20f998b5fe4b3ecb7bc272", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|397908c77fb075ea8b1108e319e036760f4854e32c20f998b5fe4b3ecb7bc272"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keystone/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98933, "scanner": "repobility-docker", "fingerprint": "1c10e6cda07648200d5b35dafd5362b983671d0626629aa8f3f9beb029acd0bc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c10e6cda07648200d5b35dafd5362b983671d0626629aa8f3f9beb029acd0bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keystone/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98931, "scanner": "repobility-docker", "fingerprint": "f6dea49da24452fd408f64ccf7eb8a8087217363a5c2e1a15cde83021df1e47b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f6dea49da24452fd408f64ccf7eb8a8087217363a5c2e1a15cde83021df1e47b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keycloak/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98930, "scanner": "repobility-docker", "fingerprint": "2edc1570bae6fcc63e05e97f3f3cabe795a53c32bdda96390ca34fa74963b28b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2edc1570bae6fcc63e05e97f3f3cabe795a53c32bdda96390ca34fa74963b28b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keycloak/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98927, "scanner": "repobility-docker", "fingerprint": "6aec14d80f146b905358d130f969e91ebece99b68f5533172845b3780dfb945e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6aec14d80f146b905358d130f969e91ebece99b68f5533172845b3780dfb945e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/keras/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98925, "scanner": "repobility-docker", "fingerprint": "8682231cc6a2e70fca83b3c327c0e04393d8751b7009afd2a9ebdde4ac21cde9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8682231cc6a2e70fca83b3c327c0e04393d8751b7009afd2a9ebdde4ac21cde9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kea/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98917, "scanner": "repobility-docker", "fingerprint": "92d7818769563781eed501a8415269dbb43fb0813accd948f7cf7083d26f3340", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|92d7818769563781eed501a8415269dbb43fb0813accd948f7cf7083d26f3340"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kamailio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98916, "scanner": "repobility-docker", "fingerprint": "d0e575547579d892f739f2a2a955f31bad0fd756dfbf37766e11ff54ea4e9ca2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d0e575547579d892f739f2a2a955f31bad0fd756dfbf37766e11ff54ea4e9ca2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kamailio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98913, "scanner": "repobility-docker", "fingerprint": "6ee8dc9b14366ab0b4aacf016b97fcedd7da00f54f1a8897d65b8b6a16bb5755", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ee8dc9b14366ab0b4aacf016b97fcedd7da00f54f1a8897d65b8b6a16bb5755"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98912, "scanner": "repobility-docker", "fingerprint": "765dda10b24b2c07f71c231d3e693dd2b60af878572a31c8bee559693c199edf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|765dda10b24b2c07f71c231d3e693dd2b60af878572a31c8bee559693c199edf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98911, "scanner": "repobility-docker", "fingerprint": "798d181aef137363b3e78928c3f9e587ebbc75fc19635236c21f17fd0c6cf576", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|798d181aef137363b3e78928c3f9e587ebbc75fc19635236c21f17fd0c6cf576"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98910, "scanner": "repobility-docker", "fingerprint": "088c8934fdce04d352f329564f0301bc45b25a22db61af4a86a88947c8c06989", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|088c8934fdce04d352f329564f0301bc45b25a22db61af4a86a88947c8c06989"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/kafka/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98905, "scanner": "repobility-docker", "fingerprint": "9678d3da0528600bb694e7002e306334682524debb703d903b4c588257471ef7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9678d3da0528600bb694e7002e306334682524debb703d903b4c588257471ef7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jwt-verify-lib/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98904, "scanner": "repobility-docker", "fingerprint": "fc84d8083e5a184d4fa6efc42cec62895709df86e2b8295435db0a17cddf1ee1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fc84d8083e5a184d4fa6efc42cec62895709df86e2b8295435db0a17cddf1ee1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jwt-verify-lib/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98901, "scanner": "repobility-docker", "fingerprint": "1003e1cdaaf0e585fbb06d5c43578331470b2017281eb2049f96337ceaa24d58", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1003e1cdaaf0e585fbb06d5c43578331470b2017281eb2049f96337ceaa24d58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter_server/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98900, "scanner": "repobility-docker", "fingerprint": "54c9d413791bfd9a588836480c589995da9b11c3323ac2990fe280ded38217a3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54c9d413791bfd9a588836480c589995da9b11c3323ac2990fe280ded38217a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jupyter_server/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98888, "scanner": "repobility-docker", "fingerprint": "864db42974fa00e9d213492d15945ba25870b69f4620629b40a40c7cab7745c6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|864db42974fa00e9d213492d15945ba25870b69f4620629b40a40c7cab7745c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jstl-api/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98885, "scanner": "repobility-docker", "fingerprint": "28b1b75daec0acbdb0495b6c34dd850b55219e66cb3050cd947baddb0e2c7c65", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28b1b75daec0acbdb0495b6c34dd850b55219e66cb3050cd947baddb0e2c7c65"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsqlparser/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98884, "scanner": "repobility-docker", "fingerprint": "7d387625dffb62e7ce63cce29b1b69be619c8b07efda4930ef5b05b78edc8c32", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7d387625dffb62e7ce63cce29b1b69be619c8b07efda4930ef5b05b78edc8c32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsqlparser/Dockerfile"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98870, "scanner": "repobility-docker", "fingerprint": "4db6ac967c44ffd52db99ebb22734c8ca071581128cfc7b1e66902b250afbc93", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4db6ac967c44ffd52db99ebb22734c8ca071581128cfc7b1e66902b250afbc93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonnet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98869, "scanner": "repobility-docker", "fingerprint": "06991ce7c50b851f65fbd6ea9494100b5442a6e78dae82f0c54fd7772f2f4460", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|06991ce7c50b851f65fbd6ea9494100b5442a6e78dae82f0c54fd7772f2f4460"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonnet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98866, "scanner": "repobility-docker", "fingerprint": "e91faf55b26aebf568c01171f63992a0dc810d7a881dd17851812c53be1ca7ba", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e91faf55b26aebf568c01171f63992a0dc810d7a881dd17851812c53be1ca7ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98865, "scanner": "repobility-docker", "fingerprint": "0e2ae913185ad67d06e14aa9001f64710682f5e24de4d9388621b8702aefa698", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0e2ae913185ad67d06e14aa9001f64710682f5e24de4d9388621b8702aefa698"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98863, "scanner": "repobility-docker", "fingerprint": "72995581f31db42cad5fbfaee630565ad2d9cddaebd311928315bfe8c264716c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|72995581f31db42cad5fbfaee630565ad2d9cddaebd311928315bfe8c264716c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncons/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98862, "scanner": "repobility-docker", "fingerprint": "c01b7a65e31ae7ade0e13d7996c6cc074dd5ef077207e3e2ad232db65ea6120b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c01b7a65e31ae7ade0e13d7996c6cc074dd5ef077207e3e2ad232db65ea6120b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsoncons/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98851, "scanner": "repobility-docker", "fingerprint": "233429ee8c028e25b1b0c2cf9671bfbe957d03504d18dc228bad70bd2e1c34ef", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|233429ee8c028e25b1b0c2cf9671bfbe957d03504d18dc228bad70bd2e1c34ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-sanitizer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98850, "scanner": "repobility-docker", "fingerprint": "92e687c2e9819b6ed309d8a4c6a4c21b81ec94d247f7d864520d376a1a037f21", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|92e687c2e9819b6ed309d8a4c6a4c21b81ec94d247f7d864520d376a1a037f21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-sanitizer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98845, "scanner": "repobility-docker", "fingerprint": "31e62b4a91b6cedc03f2fa6ad70404660c59c8cb4e0f52f9cfb8d5e4b6649a79", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|31e62b4a91b6cedc03f2fa6ad70404660c59c8cb4e0f52f9cfb8d5e4b6649a79"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98844, "scanner": "repobility-docker", "fingerprint": "21a2485d3628542ec753a781a17052fc3f5f25c21e5a6e0546c8978e0ff7871e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|21a2485d3628542ec753a781a17052fc3f5f25c21e5a6e0546c8978e0ff7871e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98840, "scanner": "repobility-docker", "fingerprint": "75556caa258d90652f1e06570fa22b1517d8d55aae9ff7d2b905ff2a87d257f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|75556caa258d90652f1e06570fa22b1517d8d55aae9ff7d2b905ff2a87d257f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98839, "scanner": "repobility-docker", "fingerprint": "995bf16ffadf5cd763b4604466d7401b98e63ae769b63c948f91a7ccccd08657", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|995bf16ffadf5cd763b4604466d7401b98e63ae769b63c948f91a7ccccd08657"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json-c/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98836, "scanner": "repobility-docker", "fingerprint": "9b93b2f4244ebed0ee063bd2c1c34c333720770ba8718ec1d05e756e08f6ce95", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b93b2f4244ebed0ee063bd2c1c34c333720770ba8718ec1d05e756e08f6ce95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98835, "scanner": "repobility-docker", "fingerprint": "5a8d7a1942780749e39902f06bc85e0ca92558e72bc8044430d4a84eba75e29f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5a8d7a1942780749e39902f06bc85e0ca92558e72bc8044430d4a84eba75e29f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/json/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98832, "scanner": "repobility-docker", "fingerprint": "cbc7b067b1192dce91980c65d7d94a3500eeda0680a6d17030cd0b26b9230b69", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cbc7b067b1192dce91980c65d7d94a3500eeda0680a6d17030cd0b26b9230b69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsmin/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98831, "scanner": "repobility-docker", "fingerprint": "785247ed87b1e674635593d61dc1279c11a15c9f3239be974690b6835078b8fd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|785247ed87b1e674635593d61dc1279c11a15c9f3239be974690b6835078b8fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsmin/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98823, "scanner": "repobility-docker", "fingerprint": "d08c03fbd46bc2ab865ecf388ed961605fa2345caffa56315f3e3713aa8b60e0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d08c03fbd46bc2ab865ecf388ed961605fa2345caffa56315f3e3713aa8b60e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsch/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98822, "scanner": "repobility-docker", "fingerprint": "0be802821312110c467e5558ab117ccc658b7a5a8056be4ed90bb18b80633660", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0be802821312110c467e5558ab117ccc658b7a5a8056be4ed90bb18b80633660"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsch/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98819, "scanner": "repobility-docker", "fingerprint": "d38fdc2130b92c1d96d76e77a0b4228286e8cb8dff7752c5f163ecd2619ff022", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d38fdc2130b92c1d96d76e77a0b4228286e8cb8dff7752c5f163ecd2619ff022"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98818, "scanner": "repobility-docker", "fingerprint": "a1d8b19d63b06c291e439558ebaa34663bb2a8e9daebe16bdc6517a1ae110eb9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a1d8b19d63b06c291e439558ebaa34663bb2a8e9daebe16bdc6517a1ae110eb9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98813, "scanner": "repobility-docker", "fingerprint": "901df6c5146fd35ed93d1a2e41094315a63778521eeb2476be6fbba1b40d09d2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|901df6c5146fd35ed93d1a2e41094315a63778521eeb2476be6fbba1b40d09d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98812, "scanner": "repobility-docker", "fingerprint": "99c14842b0e7c440cf2e274367ef3575c40269884a40ec35fac75d91eca0591e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|99c14842b0e7c440cf2e274367ef3575c40269884a40ec35fac75d91eca0591e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98809, "scanner": "repobility-docker", "fingerprint": "8c976b5615e0e16af85f903f474ca1c7782c113c6a8637ef5da4e3e5df54d264", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8c976b5615e0e16af85f903f474ca1c7782c113c6a8637ef5da4e3e5df54d264"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpegoptim/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98808, "scanner": "repobility-docker", "fingerprint": "92b10ad0eab5a6e1806668ed9c0327277b50187dc750fa8fb5d05a69092fe0ab", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|92b10ad0eab5a6e1806668ed9c0327277b50187dc750fa8fb5d05a69092fe0ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jpegoptim/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98791, "scanner": "repobility-docker", "fingerprint": "0f8e11897bc7b89c4a48e147b4ca6aba6fa2ef1325541ecc26b71e949e9ecb9e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f8e11897bc7b89c4a48e147b4ca6aba6fa2ef1325541ecc26b71e949e9ecb9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-convert/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98790, "scanner": "repobility-docker", "fingerprint": "a1dde957bfcaf9f4e979baa940b9104b74553ce421959b051084317648b6272d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a1dde957bfcaf9f4e979baa940b9104b74553ce421959b051084317648b6272d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/joda-convert/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98779, "scanner": "repobility-docker", "fingerprint": "42048dc01d2f0795f57f9976f0d33517049ba7efddcf702fc7dd5587f5c44785", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|42048dc01d2f0795f57f9976f0d33517049ba7efddcf702fc7dd5587f5c44785"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98778, "scanner": "repobility-docker", "fingerprint": "2f9e191a36beca86b159a613ff5e89a0c06370185c76ff6512250bcd3557ca34", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2f9e191a36beca86b159a613ff5e89a0c06370185c76ff6512250bcd3557ca34"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98771, "scanner": "repobility-docker", "fingerprint": "f1e480da12b610e42090e835b9044813f8497dbf41ca959fed7e16a6ce9e6ce2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f1e480da12b610e42090e835b9044813f8497dbf41ca959fed7e16a6ce9e6ce2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jfreechart/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98760, "scanner": "repobility-docker", "fingerprint": "62e564777e84b4850957f1833310a4aedf10fc2d7d42571c0b4b7cb1e23e4597", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|62e564777e84b4850957f1833310a4aedf10fc2d7d42571c0b4b7cb1e23e4597"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98759, "scanner": "repobility-docker", "fingerprint": "5663472d1671c27f0606844cdee684d18bc9426c79065387fa26910fa910a6d9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5663472d1671c27f0606844cdee684d18bc9426c79065387fa26910fa910a6d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedis/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98750, "scanner": "repobility-docker", "fingerprint": "a60a6c05b151cbd9dadd13a8b8f2a69a688b4ae2affc4f8f096d6bbcc7a7c812", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a60a6c05b151cbd9dadd13a8b8f2a69a688b4ae2affc4f8f096d6bbcc7a7c812"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jbig2dec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98749, "scanner": "repobility-docker", "fingerprint": "7cb0d766a7b5ea292db63d8956f085e24e302bdf67d86d6922f186905e9531e9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7cb0d766a7b5ea292db63d8956f085e24e302bdf67d86d6922f186905e9531e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jbig2dec/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98744, "scanner": "repobility-docker", "fingerprint": "542eba6eba1cfe03dd7c68aa25ed582c3b6abaddc15bf5323a2d55fbdcd83aa0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|542eba6eba1cfe03dd7c68aa25ed582c3b6abaddc15bf5323a2d55fbdcd83aa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98743, "scanner": "repobility-docker", "fingerprint": "4bc0a534b2255d622675eeed64b3482929c67b9fb9943485de4cc76a4dbc7e8b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4bc0a534b2255d622675eeed64b3482929c67b9fb9943485de4cc76a4dbc7e8b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98736, "scanner": "repobility-docker", "fingerprint": "cf4273f4b1fea82abe76c35067d63c7be8af8a314ea2f22fc4efe4767737f2bb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cf4273f4b1fea82abe76c35067d63c7be8af8a314ea2f22fc4efe4767737f2bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javapoet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98735, "scanner": "repobility-docker", "fingerprint": "64f032b288edd8339b9fcfba7d35cfe46e6e522d3e370bcbb18a45a0ed29db67", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|64f032b288edd8339b9fcfba7d35cfe46e6e522d3e370bcbb18a45a0ed29db67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javapoet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98732, "scanner": "repobility-docker", "fingerprint": "54127e1aaac3e0b9b3d502ff52321c397590f1ab7a086c02a0314a76c16356fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|54127e1aaac3e0b9b3d502ff52321c397590f1ab7a086c02a0314a76c16356fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javaparser/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98731, "scanner": "repobility-docker", "fingerprint": "c5e0c25c9df15a629bd1e72a9a345e0a5d0c0ee3dc2dad9a8b67aa18c2492136", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c5e0c25c9df15a629bd1e72a9a345e0a5d0c0ee3dc2dad9a8b67aa18c2492136"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/javaparser/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98718, "scanner": "repobility-docker", "fingerprint": "304f45a4c60aaf6321ec71a7df37cd3d917dd4b6654d67af2810b1e3102cb2b0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|304f45a4c60aaf6321ec71a7df37cd3d917dd4b6654d67af2810b1e3102cb2b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janus-gateway/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98717, "scanner": "repobility-docker", "fingerprint": "4cc064c1da8b4539218b2adf90ad5d22562ec4586a8047321dc819e44403cfdf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4cc064c1da8b4539218b2adf90ad5d22562ec4586a8047321dc819e44403cfdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janus-gateway/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98708, "scanner": "repobility-docker", "fingerprint": "9ce862a17a971ac0063d1b8d6030165a1c14e5ae3286f6864c18f799c1d379b0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ce862a17a971ac0063d1b8d6030165a1c14e5ae3286f6864c18f799c1d379b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98707, "scanner": "repobility-docker", "fingerprint": "8a6f4076e4fe4988fbb82d24a2892f53e7f5f10687dca62b4f574567958422ec", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8a6f4076e4fe4988fbb82d24a2892f53e7f5f10687dca62b4f574567958422ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janet/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98696, "scanner": "repobility-docker", "fingerprint": "8fb496f7c90e5e150895f89b6695c0e8fb553bd68638c912abd532d0f18c44df", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8fb496f7c90e5e150895f89b6695c0e8fb553bd68638c912abd532d0f18c44df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-binary/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98695, "scanner": "repobility-docker", "fingerprint": "9045b40ab6a1a23cde02e0510153eb8d5b2f4d81163d3f34aeaa4c21df52418d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9045b40ab6a1a23cde02e0510153eb8d5b2f4d81163d3f34aeaa4c21df52418d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-dataformats-binary/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98688, "scanner": "repobility-docker", "fingerprint": "5c669129b5315bb6bccba8c078f211af894f8c3f599e272d590de58074f7392c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c669129b5315bb6bccba8c078f211af894f8c3f599e272d590de58074f7392c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-core/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98687, "scanner": "repobility-docker", "fingerprint": "7ee2065d1878351c46c1a20068936fe9a119a05caec7948b75195609a4b930b8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7ee2065d1878351c46c1a20068936fe9a119a05caec7948b75195609a4b930b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-core/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98674, "scanner": "repobility-docker", "fingerprint": "f12e4492140bd0d0456503f147604d9dc12beb41b8dc9cbf4f03123e9d4f9bd4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f12e4492140bd0d0456503f147604d9dc12beb41b8dc9cbf4f03123e9d4f9bd4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/irssi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98673, "scanner": "repobility-docker", "fingerprint": "7bdc54d3be0de56506e581f1f44fd10f5ce6fa19891a41f315d60b890ece8e7d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7bdc54d3be0de56506e581f1f44fd10f5ce6fa19891a41f315d60b890ece8e7d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/irssi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98668, "scanner": "repobility-docker", "fingerprint": "89d1342462f7515c8bbc927bcdff614c75126e88c17d9c8a150faf7aa3295769", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|89d1342462f7515c8bbc927bcdff614c75126e88c17d9c8a150faf7aa3295769"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipython/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98667, "scanner": "repobility-docker", "fingerprint": "dadeb1a01bb4c83a1654b82d0bcaebe98611a4f7b68836b91e2e5c554fdcc086", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dadeb1a01bb4c83a1654b82d0bcaebe98611a4f7b68836b91e2e5c554fdcc086"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipython/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98666, "scanner": "repobility-docker", "fingerprint": "388818ac0a3f2b28b61c3f47835fde3709055637ac9e2552eaa6c19350cd86ea", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|388818ac0a3f2b28b61c3f47835fde3709055637ac9e2552eaa6c19350cd86ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipython/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98663, "scanner": "repobility-docker", "fingerprint": "57ec4d51a3a27b082e32a812101221cd2577d1074f8e627c8e7e86e175a365a4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57ec4d51a3a27b082e32a812101221cd2577d1074f8e627c8e7e86e175a365a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ipp-usb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98659, "scanner": "repobility-docker", "fingerprint": "40e4669f307e65dc2dc0ae580f2425b226bdb3304f330b03d3a461db991e8ca6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|40e4669f307e65dc2dc0ae580f2425b226bdb3304f330b03d3a461db991e8ca6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iperf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98658, "scanner": "repobility-docker", "fingerprint": "e17ffc8d0eb7b94e406b621b0cc56db7ec3ee789fd23cf66a211308c81f92a7c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e17ffc8d0eb7b94e406b621b0cc56db7ec3ee789fd23cf66a211308c81f92a7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iperf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98650, "scanner": "repobility-docker", "fingerprint": "4a4333093f79d7fd94d774cd8dbb2d3b69b646eca9556ae6e3b713cd6b51e771", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a4333093f79d7fd94d774cd8dbb2d3b69b646eca9556ae6e3b713cd6b51e771"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iniconfig/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98649, "scanner": "repobility-docker", "fingerprint": "872bcf386c39598a6a0f2bfa8e38a4bc30e738cc910cee5b4823541f0e273fa5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|872bcf386c39598a6a0f2bfa8e38a4bc30e738cc910cee5b4823541f0e273fa5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/iniconfig/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98645, "scanner": "repobility-docker", "fingerprint": "08a6f2075114d4f5269653ca199cfe1a1b83d8eb63a8741221c2e9ba91378625", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|08a6f2075114d4f5269653ca199cfe1a1b83d8eb63a8741221c2e9ba91378625"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inchi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98644, "scanner": "repobility-docker", "fingerprint": "2bb419e8d547ecb11dd940a80d8f9f36d53f6e8351f51a8d01b8688e79e6d134", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2bb419e8d547ecb11dd940a80d8f9f36d53f6e8351f51a8d01b8688e79e6d134"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/inchi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98639, "scanner": "repobility-docker", "fingerprint": "d227eb6cce539e455de3097c5b8b976730c7dc8d926b6e2dde5cbf9766ce4b52", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d227eb6cce539e455de3097c5b8b976730c7dc8d926b6e2dde5cbf9766ce4b52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/immer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98638, "scanner": "repobility-docker", "fingerprint": "10f4a5ee15406e7ac8e88452014d2eecf7ff438ed682b769818001a701b31ab6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|10f4a5ee15406e7ac8e88452014d2eecf7ff438ed682b769818001a701b31ab6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/immer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98634, "scanner": "repobility-docker", "fingerprint": "ff82ebc2cbcc2632066692e18966b7ffd243f4c90129e3c76c256eb22e8bbe32", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ff82ebc2cbcc2632066692e18966b7ffd243f4c90129e3c76c256eb22e8bbe32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98633, "scanner": "repobility-docker", "fingerprint": "c65e029118b68d670ca84cbafeb1eed941cd64e863eac310a0c9c7e8d6fa4774", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c65e029118b68d670ca84cbafeb1eed941cd64e863eac310a0c9c7e8d6fa4774"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98632, "scanner": "repobility-docker", "fingerprint": "770356296d190160dbfc7aae32e947b8cd9813bd49e6c94d4e4110c772600f9c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|770356296d190160dbfc7aae32e947b8cd9813bd49e6c94d4e4110c772600f9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imagemagick/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98629, "scanner": "repobility-docker", "fingerprint": "4508db6294bead61479f9df10b584b6ee664dd3d8ed0cc47f9022baa44012226", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4508db6294bead61479f9df10b584b6ee664dd3d8ed0cc47f9022baa44012226"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imageio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98628, "scanner": "repobility-docker", "fingerprint": "b7b2e65207c9f2264cdb30310378f6ef65eced850ada727da0b299df7aa945af", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b7b2e65207c9f2264cdb30310378f6ef65eced850ada727da0b299df7aa945af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/imageio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98623, "scanner": "repobility-docker", "fingerprint": "fbbf1e064581e28489e359a76e473837e4546376a22935317e2e8cff444bbd66", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbbf1e064581e28489e359a76e473837e4546376a22935317e2e8cff444bbd66"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-png/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98622, "scanner": "repobility-docker", "fingerprint": "eb6cfe44dcf669128120dbd77b86fcbce7e18da34740844892f1ea1d6f8ff7c6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eb6cfe44dcf669128120dbd77b86fcbce7e18da34740844892f1ea1d6f8ff7c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/image-png/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98619, "scanner": "repobility-docker", "fingerprint": "da197c428b166505ad630d54e517026a7dbd36ec6447b3925bf2caf31125a503", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|da197c428b166505ad630d54e517026a7dbd36ec6447b3925bf2caf31125a503"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ijson/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98618, "scanner": "repobility-docker", "fingerprint": "e20475d99ce86e8f55b58607d36cb8b374fa5467c003ee2f500838374621cec4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e20475d99ce86e8f55b58607d36cb8b374fa5467c003ee2f500838374621cec4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ijson/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98615, "scanner": "repobility-docker", "fingerprint": "e82239f04a8637bb4e4974e98e84897fad84898e816e4392f603ef203d9fed9e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e82239f04a8637bb4e4974e98e84897fad84898e816e4392f603ef203d9fed9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/igraph/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98614, "scanner": "repobility-docker", "fingerprint": "d7639497884e848c38dd0a5ff1f56ec36c272c25b6f6790764d8af6e7bf30e76", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d7639497884e848c38dd0a5ff1f56ec36c272c25b6f6790764d8af6e7bf30e76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/igraph/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98611, "scanner": "repobility-docker", "fingerprint": "4f42785dd79867f575b06672dd4395c0d448d087b121c1abb7ec2367d85bafde", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f42785dd79867f575b06672dd4395c0d448d087b121c1abb7ec2367d85bafde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/idna/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98610, "scanner": "repobility-docker", "fingerprint": "ad0edf74a99a2f849d588f6b39ee1ff4743c5c300113c07c110376bb982eb7b0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ad0edf74a99a2f849d588f6b39ee1ff4743c5c300113c07c110376bb982eb7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/idna/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98607, "scanner": "repobility-docker", "fingerprint": "60b3d62861c827bd5b46f98bbff4c2315a5e4007c8dfcba9c9104dd80788fcde", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|60b3d62861c827bd5b46f98bbff4c2315a5e4007c8dfcba9c9104dd80788fcde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icu/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98606, "scanner": "repobility-docker", "fingerprint": "2d033165edf6ba26365dd524412c39a3f19697e40e33837e96ea2204e78ab2ca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2d033165edf6ba26365dd524412c39a3f19697e40e33837e96ea2204e78ab2ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/icu/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98601, "scanner": "repobility-docker", "fingerprint": "38ccadb17ed1068e5810e8e4970199b8c4ee5196b0a2044a94d205875f67d350", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|38ccadb17ed1068e5810e8e4970199b8c4ee5196b0a2044a94d205875f67d350"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ibmswtpm2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98600, "scanner": "repobility-docker", "fingerprint": "67a51ee6263b29eb0c958f1d65bef3d4222a52a6664c53e6139e69046da7818b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|67a51ee6263b29eb0c958f1d65bef3d4222a52a6664c53e6139e69046da7818b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ibmswtpm2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98595, "scanner": "repobility-docker", "fingerprint": "bdbaa6db386809195ca8f9ad5fe7010b0e46153288f7797012ba75abaa4f7185", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bdbaa6db386809195ca8f9ad5fe7010b0e46153288f7797012ba75abaa4f7185"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hwloc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98594, "scanner": "repobility-docker", "fingerprint": "2d66368e5d62076beac1130d2ef7854855000cb0211ac72c1ccfe684b89cf7d3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2d66368e5d62076beac1130d2ef7854855000cb0211ac72c1ccfe684b89cf7d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hwloc/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98591, "scanner": "repobility-docker", "fingerprint": "77bb9633a2d922a1e775e98d77dc98e81fe04af76dfb6f21e205ba516b85fc32", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77bb9633a2d922a1e775e98d77dc98e81fe04af76dfb6f21e205ba516b85fc32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hunspell/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98590, "scanner": "repobility-docker", "fingerprint": "3607d6f9d5ca51f93d36a3389196addb4509595822627c81c197c97f4cb98b7e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3607d6f9d5ca51f93d36a3389196addb4509595822627c81c197c97f4cb98b7e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hunspell/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98583, "scanner": "repobility-docker", "fingerprint": "81363f8aaced2b6bbc2bbae882015c081aaea0b4435349cde5db8a8a7346cf59", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|81363f8aaced2b6bbc2bbae882015c081aaea0b4435349cde5db8a8a7346cf59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httplib2/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98582, "scanner": "repobility-docker", "fingerprint": "d97bed131a048fac0aaad7586eb24a6fa32007c43f39db9055e588da27984085", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d97bed131a048fac0aaad7586eb24a6fa32007c43f39db9055e588da27984085"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httplib2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98581, "scanner": "repobility-docker", "fingerprint": "e4352e0a67e351e10465ddb4519bf1722381f82c970bbffcfaf66f8bac1a54b2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e4352e0a67e351e10465ddb4519bf1722381f82c970bbffcfaf66f8bac1a54b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httplib2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98570, "scanner": "repobility-docker", "fingerprint": "f767cd1b530ea8e24650938f8c3ef4b9cc9bd50ccc91348342773f486614a92c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f767cd1b530ea8e24650938f8c3ef4b9cc9bd50ccc91348342773f486614a92c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-pattern-matcher/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98569, "scanner": "repobility-docker", "fingerprint": "a3c12ff026a5bf716471e4e7617beb5bb7212e67a92ffbdf193853515c2ea658", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a3c12ff026a5bf716471e4e7617beb5bb7212e67a92ffbdf193853515c2ea658"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-pattern-matcher/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98567, "scanner": "repobility-docker", "fingerprint": "9f47e693d155c00208f1fcdf52b8be07813f8dae2e6b39f2098f16d66494abef", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9f47e693d155c00208f1fcdf52b8be07813f8dae2e6b39f2098f16d66494abef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-parser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98566, "scanner": "repobility-docker", "fingerprint": "fb3c6738d71e6ca4fda3377956b2ef4656db03753740405f05fde9512252b1a5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fb3c6738d71e6ca4fda3377956b2ef4656db03753740405f05fde9512252b1a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/http-parser/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98563, "scanner": "repobility-docker", "fingerprint": "15c1f60de7011be50a9ab384da5e4342ccf57d672a4978f5d4906ee64104d81d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|15c1f60de7011be50a9ab384da5e4342ccf57d672a4978f5d4906ee64104d81d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htslib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98562, "scanner": "repobility-docker", "fingerprint": "ec3c5b44471b6e6d234ffb678ee237da9a6ec077d41e73d8c1ef9333da6b67a3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ec3c5b44471b6e6d234ffb678ee237da9a6ec077d41e73d8c1ef9333da6b67a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htslib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98559, "scanner": "repobility-docker", "fingerprint": "d68a59671576fcad6ae672c42ca125cefc4f200f7fa232b7ec98674e4312cd26", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d68a59671576fcad6ae672c42ca125cefc4f200f7fa232b7ec98674e4312cd26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/htmlunit/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98550, "scanner": "repobility-docker", "fingerprint": "c97c9f35212e146cb8eb92ee0863f1f2925ca4441bf8cea05251b912b59a4810", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c97c9f35212e146cb8eb92ee0863f1f2925ca4441bf8cea05251b912b59a4810"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98549, "scanner": "repobility-docker", "fingerprint": "8a4c6df823886e65429475cae1e5fa9f26ffea9e59876b466fd2257f665d454d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8a4c6df823886e65429475cae1e5fa9f26ffea9e59876b466fd2257f665d454d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98548, "scanner": "repobility-docker", "fingerprint": "1b16c6eb2258c154ccb7c6cedd9e90c229c5c1dfeb7d83268b76d861aba8acb6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1b16c6eb2258c154ccb7c6cedd9e90c229c5c1dfeb7d83268b76d861aba8acb6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98547, "scanner": "repobility-docker", "fingerprint": "c743e2c5e38b8b45bd7d7bcd12037a811c9ca463f1ff522381217037c1383378", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c743e2c5e38b8b45bd7d7bcd12037a811c9ca463f1ff522381217037c1383378"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hpn-ssh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98544, "scanner": "repobility-docker", "fingerprint": "d11857810953ca0e3651643ae139ada8b8eafa5539e5083a60b80733198fb7fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d11857810953ca0e3651643ae139ada8b8eafa5539e5083a60b80733198fb7fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hostap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98543, "scanner": "repobility-docker", "fingerprint": "b59722cf178422acfac91009df0de84a4739ac8ede6efed853e87e9f6fdbd73d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b59722cf178422acfac91009df0de84a4739ac8ede6efed853e87e9f6fdbd73d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hostap/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98540, "scanner": "repobility-docker", "fingerprint": "8337bf7bc3e3f00705ce7a6406da32c12172527aee1d92aaf47edad7f6fa2e39", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8337bf7bc3e3f00705ce7a6406da32c12172527aee1d92aaf47edad7f6fa2e39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hoextdown/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98539, "scanner": "repobility-docker", "fingerprint": "4fbc107fd221561f3352b1962795cabc3594c4b108665c92bea838bd2367dcc4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4fbc107fd221561f3352b1962795cabc3594c4b108665c92bea838bd2367dcc4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hoextdown/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98531, "scanner": "repobility-docker", "fingerprint": "6ae4a7361345e701f7a054b460e983cf9e7086b4aacbe866e948f6b7b7fb11bb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6ae4a7361345e701f7a054b460e983cf9e7086b4aacbe866e948f6b7b7fb11bb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hikaricp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98530, "scanner": "repobility-docker", "fingerprint": "55bc9fed2a72f6a43ab6f6eb57a2940c7c8d9ba2c416aedd10aaaa7b3ae9825d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|55bc9fed2a72f6a43ab6f6eb57a2940c7c8d9ba2c416aedd10aaaa7b3ae9825d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hikaricp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98527, "scanner": "repobility-docker", "fingerprint": "2650e53f374ed287296158fc180b13fe75abadbd8a03e0acdaf7b44d452f615e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2650e53f374ed287296158fc180b13fe75abadbd8a03e0acdaf7b44d452f615e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/highwayhash/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98526, "scanner": "repobility-docker", "fingerprint": "33cce58f008a86a14d4968a81ea897489d4889d51c0db3ffa21ed790257861d7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|33cce58f008a86a14d4968a81ea897489d4889d51c0db3ffa21ed790257861d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/highwayhash/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98523, "scanner": "repobility-docker", "fingerprint": "9ab96ee898afabe46246b0d8619b1d64f45ba186cfa5bd530f467b5b096adbe1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9ab96ee898afabe46246b0d8619b1d64f45ba186cfa5bd530f467b5b096adbe1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98522, "scanner": "repobility-docker", "fingerprint": "76469cb0dfff4d100276175f4afd757ddc201d6a61ad9b5eca8ec25a2c730b48", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|76469cb0dfff4d100276175f4afd757ddc201d6a61ad9b5eca8ec25a2c730b48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98517, "scanner": "repobility-docker", "fingerprint": "82c757fdc737ee21e4a2c841fb1cb374c6e1d13565e4826f7168b423fbcd95fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82c757fdc737ee21e4a2c841fb1cb374c6e1d13565e4826f7168b423fbcd95fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hermes/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98516, "scanner": "repobility-docker", "fingerprint": "edcf3aa6f5a08584af27c8c77a3dd6185fbf7ae8be262286ccc535442e2f8d1b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|edcf3aa6f5a08584af27c8c77a3dd6185fbf7ae8be262286ccc535442e2f8d1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hermes/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98509, "scanner": "repobility-docker", "fingerprint": "619ce54dea8086aed4baa02a89e759b5a553b0b123b8f0a977cd932eb9b2ee7c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|619ce54dea8086aed4baa02a89e759b5a553b0b123b8f0a977cd932eb9b2ee7c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdf5/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98508, "scanner": "repobility-docker", "fingerprint": "d4d6fe3cfb522e9da64c9bb31a7faaf4fc9a57c1fd1e3f0257b39cc0f1a35b30", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d4d6fe3cfb522e9da64c9bb31a7faaf4fc9a57c1fd1e3f0257b39cc0f1a35b30"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hdf5/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98503, "scanner": "repobility-docker", "fingerprint": "2422a28b6b77993f9992ab2095a1e1ba6c5348f9b24aad58f87c8b819331d71c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2422a28b6b77993f9992ab2095a1e1ba6c5348f9b24aad58f87c8b819331d71c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/harfbuzz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98502, "scanner": "repobility-docker", "fingerprint": "c021932daf2b0a4f7525016c3a13291b46a02ef5dfab9d001d8f8afc265e7694", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c021932daf2b0a4f7525016c3a13291b46a02ef5dfab9d001d8f8afc265e7694"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/harfbuzz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98499, "scanner": "repobility-docker", "fingerprint": "03be78e1b46ece4bfe99e5c2c1d5da5651339e48de3fe7af090fc5c2cdcfd39f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03be78e1b46ece4bfe99e5c2c1d5da5651339e48de3fe7af090fc5c2cdcfd39f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/haproxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98498, "scanner": "repobility-docker", "fingerprint": "8e94547eb13074d81792d0af126de9547724acaf8509dc11da612daa43224bac", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8e94547eb13074d81792d0af126de9547724acaf8509dc11da612daa43224bac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/haproxy/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98493, "scanner": "repobility-docker", "fingerprint": "77c1a9726bbbeee2da5ab06f729f55d08cd149dc28d8165672d75942250f2002", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|77c1a9726bbbeee2da5ab06f729f55d08cd149dc28d8165672d75942250f2002"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/halide/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98492, "scanner": "repobility-docker", "fingerprint": "3e119c7303f0167d6c87de1f6f1a450b6c6e645165521bd0b689c903e368d4dc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3e119c7303f0167d6c87de1f6f1a450b6c6e645165521bd0b689c903e368d4dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/halide/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98488, "scanner": "repobility-docker", "fingerprint": "5c083844d1f2d0265e836ebff0d94bfd110d426c5eb8db3f3f16be15c5581c92", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c083844d1f2d0265e836ebff0d94bfd110d426c5eb8db3f3f16be15c5581c92"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h5py/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98487, "scanner": "repobility-docker", "fingerprint": "a272e289a3e3d37ae4b5f8dcc26ce4af124493eaee64d3451d21845a42ad3429", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a272e289a3e3d37ae4b5f8dcc26ce4af124493eaee64d3451d21845a42ad3429"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h5py/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98485, "scanner": "repobility-docker", "fingerprint": "65f3a0ca22368ddd983af6f8307efc4b4bce4d7d97e09c6d701ec7d1b9627999", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|65f3a0ca22368ddd983af6f8307efc4b4bce4d7d97e09c6d701ec7d1b9627999"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98484, "scanner": "repobility-docker", "fingerprint": "2715857950172be4967602e28fa94c5fd44aebb3191a4f0168f9f57a30c1c97d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2715857950172be4967602e28fa94c5fd44aebb3191a4f0168f9f57a30c1c97d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98481, "scanner": "repobility-docker", "fingerprint": "de3334f91d5dd08b6a8ff4faca2ca5c81056d33766e224cb19fcd3d5f2d58f66", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de3334f91d5dd08b6a8ff4faca2ca5c81056d33766e224cb19fcd3d5f2d58f66"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2o/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98480, "scanner": "repobility-docker", "fingerprint": "a5dbe50a8d1f60f63727539971289a95dc1a4b15e4bb4a912ac8cf0f6eff93e5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a5dbe50a8d1f60f63727539971289a95dc1a4b15e4bb4a912ac8cf0f6eff93e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/h2o/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98474, "scanner": "repobility-docker", "fingerprint": "ead89e3071043be0be3bbc6335b92058c16210fb5b96983d31271785988990cd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ead89e3071043be0be3bbc6335b92058c16210fb5b96983d31271785988990cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gwt/Dockerfile"}, "region": {"startLine": 42}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98473, "scanner": "repobility-docker", "fingerprint": "61df4e2a886648e40003abb3190bdee4b72e4647805fa74bd2cecddbaf5bae9f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|61df4e2a886648e40003abb3190bdee4b72e4647805fa74bd2cecddbaf5bae9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gwt/Dockerfile"}, "region": {"startLine": 42}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98466, "scanner": "repobility-docker", "fingerprint": "a259d5ba50e9aec26ae9e025c0da9f141529a002416fd20e14b479de3fbeb391", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a259d5ba50e9aec26ae9e025c0da9f141529a002416fd20e14b479de3fbeb391"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guetzli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98465, "scanner": "repobility-docker", "fingerprint": "cc94033f4f7c0598897f96f56437e9c1cfb6d2f1c0cbbf8f7e9ce10015826c84", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cc94033f4f7c0598897f96f56437e9c1cfb6d2f1c0cbbf8f7e9ce10015826c84"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/guetzli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98460, "scanner": "repobility-docker", "fingerprint": "ce76bab04dd0c06ae3e0b1db2d19278c54c3ba7d6e35b259c7608b8a2153040f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce76bab04dd0c06ae3e0b1db2d19278c54c3ba7d6e35b259c7608b8a2153040f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gstreamer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98459, "scanner": "repobility-docker", "fingerprint": "2243059cedda9bcc78317f70093fa3a807832ff2a7ddae6dcb5eeb148be9a41d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2243059cedda9bcc78317f70093fa3a807832ff2a7ddae6dcb5eeb148be9a41d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gstreamer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98456, "scanner": "repobility-docker", "fingerprint": "4f43efd241175a6e28b67b3c786a249fa4c3d722ce85952aa039c90b4cba6142", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4f43efd241175a6e28b67b3c786a249fa4c3d722ce85952aa039c90b4cba6142"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gss-ntlmssp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98455, "scanner": "repobility-docker", "fingerprint": "6bce3a0ee093f3984d384ca220ef5c598902a0776ed3cf50a605b196ad35c5c5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6bce3a0ee093f3984d384ca220ef5c598902a0776ed3cf50a605b196ad35c5c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gss-ntlmssp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98452, "scanner": "repobility-docker", "fingerprint": "272ff946dd47c72e2bf1f148ec1aee411f5562b90e27098ca7bcd033b254b10a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|272ff946dd47c72e2bf1f148ec1aee411f5562b90e27098ca7bcd033b254b10a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98451, "scanner": "repobility-docker", "fingerprint": "f936c510da44e123165ff425ae4f8887dccd5ec63738840f8bf04c6d515541aa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f936c510da44e123165ff425ae4f8887dccd5ec63738840f8bf04c6d515541aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98448, "scanner": "repobility-docker", "fingerprint": "b0aaf0c4486c4ddb1d6f2f1c404a44723d783fddf5e04d89f18add4ed4578ad0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b0aaf0c4486c4ddb1d6f2f1c404a44723d783fddf5e04d89f18add4ed4578ad0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-swift/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98447, "scanner": "repobility-docker", "fingerprint": "c81ecc97f357910ac3ca56128cd8990d8ad430f2bb92b823a8e58f553c0dc11d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c81ecc97f357910ac3ca56128cd8990d8ad430f2bb92b823a8e58f553c0dc11d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-swift/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98445, "scanner": "repobility-docker", "fingerprint": "72808b111f851dee9cee11bac74af977e7687c9a56f6030806ec0d0fbdefdb41", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|72808b111f851dee9cee11bac74af977e7687c9a56f6030806ec0d0fbdefdb41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-py/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98442, "scanner": "repobility-docker", "fingerprint": "431e7a4ff748f05b6b8068a1046df624d1ab4699b1f9f2f41a4d2a704ff01f4e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|431e7a4ff748f05b6b8068a1046df624d1ab4699b1f9f2f41a4d2a704ff01f4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-httpjson-transcoding/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98441, "scanner": "repobility-docker", "fingerprint": "cc59168920ac42c7162b54a2bf9362c129e40f1fa4e3228aee6b65b13dff2934", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cc59168920ac42c7162b54a2bf9362c129e40f1fa4e3228aee6b65b13dff2934"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-httpjson-transcoding/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98427, "scanner": "repobility-docker", "fingerprint": "1a33bdd9c1337ff1204b3d86b0c6a88e4124e5fab084735f9bd0eda1a54742d0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1a33bdd9c1337ff1204b3d86b0c6a88e4124e5fab084735f9bd0eda1a54742d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 46}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98426, "scanner": "repobility-docker", "fingerprint": "10565e1e2d5ae23e0229ac496009e072a8a6670f9b6132547e47dc313130829f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|10565e1e2d5ae23e0229ac496009e072a8a6670f9b6132547e47dc313130829f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 42}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98425, "scanner": "repobility-docker", "fingerprint": "3b6684cfcda1b18026799af30940868e2a3ce46bb1ac4ffd58c72c599f965c0a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3b6684cfcda1b18026799af30940868e2a3ce46bb1ac4ffd58c72c599f965c0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98424, "scanner": "repobility-docker", "fingerprint": "c54c11047abd31ba909e33a98a1b3be794fa643203be9ed86234a3063135ad9e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c54c11047abd31ba909e33a98a1b3be794fa643203be9ed86234a3063135ad9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/graphicsmagick/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98421, "scanner": "repobility-docker", "fingerprint": "51b47df42895343985239ce78a61f65b2bec6d97513187e824304de4ffeaa0eb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|51b47df42895343985239ce78a61f65b2bec6d97513187e824304de4ffeaa0eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpsd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98420, "scanner": "repobility-docker", "fingerprint": "9ecaedac9753c913c3da824a46e8d2afa36a9f9a13b2334b768307e12737a55d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9ecaedac9753c913c3da824a46e8d2afa36a9f9a13b2334b768307e12737a55d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpsd/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98415, "scanner": "repobility-docker", "fingerprint": "7647f5d9d768c7b9e424f861e8ce015f46d29ff1848ccd9f7a7fe64277237fb7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7647f5d9d768c7b9e424f861e8ce015f46d29ff1848ccd9f7a7fe64277237fb7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98414, "scanner": "repobility-docker", "fingerprint": "999abae9880bc8379d378f77cee438ae8efc6204754ca13f70f2f106f3631651", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|999abae9880bc8379d378f77cee438ae8efc6204754ca13f70f2f106f3631651"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gpac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98389, "scanner": "repobility-docker", "fingerprint": "4c070260ca20eb419e7f5fadfcd7ed21bb9644a262831b4572fa731d77af3265", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c070260ca20eb419e7f5fadfcd7ed21bb9644a262831b4572fa731d77af3265"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-toml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98388, "scanner": "repobility-docker", "fingerprint": "3950aa023292ef2d29d7b5e8f952a0e21f655432cb7a4d2252969cc95d20566a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3950aa023292ef2d29d7b5e8f952a0e21f655432cb7a4d2252969cc95d20566a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-toml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98347, "scanner": "repobility-docker", "fingerprint": "4c8b044d4ae8288e5aca760723550f717944c667ed8c4c3c240a504a992e4655", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4c8b044d4ae8288e5aca760723550f717944c667ed8c4c3c240a504a992e4655"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnutls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98346, "scanner": "repobility-docker", "fingerprint": "912ea3ace47e3726dd4203d2a7833c3a70dcf6cdefa68d72eeda8ac1f8e7155a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|912ea3ace47e3726dd4203d2a7833c3a70dcf6cdefa68d72eeda8ac1f8e7155a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnutls/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98343, "scanner": "repobility-docker", "fingerprint": "ec31a1a6d5cdfaf121f5bf743b04e04f64cf6a9d3e1400f580b64550f6aa09a0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ec31a1a6d5cdfaf121f5bf743b04e04f64cf6a9d3e1400f580b64550f6aa09a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnupg/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98342, "scanner": "repobility-docker", "fingerprint": "f55bf6592762639d6c90bfe465c72f0edb38319a51d19e08f47c3256854e913e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f55bf6592762639d6c90bfe465c72f0edb38319a51d19e08f47c3256854e913e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnupg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98341, "scanner": "repobility-docker", "fingerprint": "a48627da53fcd9bf731e4cd3ee5f31ef25ba82c3d3891aca96a0f1ce239910ef", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a48627da53fcd9bf731e4cd3ee5f31ef25ba82c3d3891aca96a0f1ce239910ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gnupg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98336, "scanner": "repobility-docker", "fingerprint": "82c5fd949f5db28ed57e19e41868305aa1d532c8805f0eecacd37dee9059efaa", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82c5fd949f5db28ed57e19e41868305aa1d532c8805f0eecacd37dee9059efaa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glslang/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98335, "scanner": "repobility-docker", "fingerprint": "046537bbf59ec4157b35832ca93e272ccfd6d53f446933d0e5e20fc82c1ca94e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|046537bbf59ec4157b35832ca93e272ccfd6d53f446933d0e5e20fc82c1ca94e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glslang/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98328, "scanner": "repobility-docker", "fingerprint": "8691d45828faf4f8f04aa688915b855cb1f2e11672efb1c2af8e9a0a4682484f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8691d45828faf4f8f04aa688915b855cb1f2e11672efb1c2af8e9a0a4682484f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98327, "scanner": "repobility-docker", "fingerprint": "642b7944ab70206fcc5a6d0187f746b3b391aac2937c4962b07191f83cea696d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|642b7944ab70206fcc5a6d0187f746b3b391aac2937c4962b07191f83cea696d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98312, "scanner": "repobility-docker", "fingerprint": "1936c00746d43f6d24884971a20c8d21d38c02c9ce3dba1d12baf5f728d0c6f0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1936c00746d43f6d24884971a20c8d21d38c02c9ce3dba1d12baf5f728d0c6f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/git/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98309, "scanner": "repobility-docker", "fingerprint": "8209ea01e915153be3a19b5850e9da3edd2cdd511bd6887038a15d34930300db", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8209ea01e915153be3a19b5850e9da3edd2cdd511bd6887038a15d34930300db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gimli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98308, "scanner": "repobility-docker", "fingerprint": "9c71956353cfc7c9243b7b2dac54ad05a13aa67f54f5cf90b02f8266fff0665c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9c71956353cfc7c9243b7b2dac54ad05a13aa67f54f5cf90b02f8266fff0665c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gimli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98305, "scanner": "repobility-docker", "fingerprint": "59a646e25ff2b2717e23c903f59c91def26bf5ecd23bf6e3fc49fc9eca2a1ccf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|59a646e25ff2b2717e23c903f59c91def26bf5ecd23bf6e3fc49fc9eca2a1ccf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98304, "scanner": "repobility-docker", "fingerprint": "8b545ae3cea4796e7b8a88360786eca0a9a16c4ed195c4cb4c531a9087328262", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8b545ae3cea4796e7b8a88360786eca0a9a16c4ed195c4cb4c531a9087328262"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98301, "scanner": "repobility-docker", "fingerprint": "7326e48273723cb318b64bbf53ef74cb11467b14ca5d36aba29eff3e24611fd9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7326e48273723cb318b64bbf53ef74cb11467b14ca5d36aba29eff3e24611fd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ghostscript/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98300, "scanner": "repobility-docker", "fingerprint": "96dce3b253453ecf50d30eefded09041065f7b2417fa5724abea53fbc05f7bd2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|96dce3b253453ecf50d30eefded09041065f7b2417fa5724abea53fbc05f7bd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ghostscript/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98297, "scanner": "repobility-docker", "fingerprint": "fbf232ace0398b6ee1d94f343a0ef0aae7b7a8c571a46beba566de47a9492a9a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbf232ace0398b6ee1d94f343a0ef0aae7b7a8c571a46beba566de47a9492a9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gfwx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98296, "scanner": "repobility-docker", "fingerprint": "1586614b5c9b23315430930c14b488c9654da96f96e7826f646ccb00096b6cbf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1586614b5c9b23315430930c14b488c9654da96f96e7826f646ccb00096b6cbf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gfwx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98293, "scanner": "repobility-docker", "fingerprint": "b337f1da973644ce8178f00f6bddf3c77263adf85d33e2b518c42c1b338c6264", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b337f1da973644ce8178f00f6bddf3c77263adf85d33e2b518c42c1b338c6264"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/geos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98292, "scanner": "repobility-docker", "fingerprint": "ce05c10de57dc8082eef8eb27afb2589e8a5e440deadb7044c0b61fe261433f4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ce05c10de57dc8082eef8eb27afb2589e8a5e440deadb7044c0b61fe261433f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/geos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98284, "scanner": "repobility-docker", "fingerprint": "87c1cc9d0d40563720556e8d9056d10dbe156388cb9e0e5459699565d7c8b1cf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87c1cc9d0d40563720556e8d9056d10dbe156388cb9e0e5459699565d7c8b1cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdk-pixbuf/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98281, "scanner": "repobility-docker", "fingerprint": "ee972414d2abdde408872e64141598633a2bd30de34b67cf97c219f4b3241274", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ee972414d2abdde408872e64141598633a2bd30de34b67cf97c219f4b3241274"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdbm/Dockerfile"}, "region": {"startLine": 29}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98280, "scanner": "repobility-docker", "fingerprint": "9fee01e68f8810cf7484b59dd5b99a435b9feef477c35306329c8edf3d3d1073", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9fee01e68f8810cf7484b59dd5b99a435b9feef477c35306329c8edf3d3d1073"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdbm/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98277, "scanner": "repobility-docker", "fingerprint": "57a7cf6dbaf1cb4e6d17c5d355ef0df9444cdffe28e2281372c571c215da3000", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|57a7cf6dbaf1cb4e6d17c5d355ef0df9444cdffe28e2281372c571c215da3000"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdal/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98276, "scanner": "repobility-docker", "fingerprint": "88cc673d1b8ff87ecdf9028fa241ab87c7e297cb06f7e3f5c7a09b5f31da242d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|88cc673d1b8ff87ecdf9028fa241ab87c7e297cb06f7e3f5c7a09b5f31da242d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gdal/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98268, "scanner": "repobility-docker", "fingerprint": "225315cf942e4bc5752e46ba564256421982eb9846d8768671730080c81153ad", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|225315cf942e4bc5752e46ba564256421982eb9846d8768671730080c81153ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98267, "scanner": "repobility-docker", "fingerprint": "68274649e33643dcfe76ad6ba6d352d70411b6a231f0f1baabe6ba40d1057c4f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|68274649e33643dcfe76ad6ba6d352d70411b6a231f0f1baabe6ba40d1057c4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98266, "scanner": "repobility-docker", "fingerprint": "138376558c9c7417ca48fa0c64c16b86e283d011fdb266fca0ec02f7d19cd236", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|138376558c9c7417ca48fa0c64c16b86e283d011fdb266fca0ec02f7d19cd236"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98265, "scanner": "repobility-docker", "fingerprint": "d9b6e0312718af5a5774cca6daf790e4ee223b2a49dd26440154f7157cb69d56", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d9b6e0312718af5a5774cca6daf790e4ee223b2a49dd26440154f7157cb69d56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gc-iam/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98262, "scanner": "repobility-docker", "fingerprint": "19c50b8b443cb326768b793a328a9217d5840f133117aa41144ff50030a55663", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19c50b8b443cb326768b793a328a9217d5840f133117aa41144ff50030a55663"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gateway/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98261, "scanner": "repobility-docker", "fingerprint": "779ba4078131da299372db46403150945242070165e702aae211614aec28eb16", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|779ba4078131da299372db46403150945242070165e702aae211614aec28eb16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gateway/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98243, "scanner": "repobility-docker", "fingerprint": "4eaed87054b461e583e466a88c7d101335252c3704c08f40006cadae7eaa73e3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4eaed87054b461e583e466a88c7d101335252c3704c08f40006cadae7eaa73e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98242, "scanner": "repobility-docker", "fingerprint": "91a6b156ce543a39a266c7fab5516b5c728ccff05d95391fae7d9a5682bb9424", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|91a6b156ce543a39a266c7fab5516b5c728ccff05d95391fae7d9a5682bb9424"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98241, "scanner": "repobility-docker", "fingerprint": "c50906909ff00f4d65d8c9f8817ba8299c85a6d8da8565c6a6d1da4254d25d95", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c50906909ff00f4d65d8c9f8817ba8299c85a6d8da8565c6a6d1da4254d25d95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98240, "scanner": "repobility-docker", "fingerprint": "93c3cecced5f1d447468c69ce4ad830057eede4ac203c196d0664cb592af436a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|93c3cecced5f1d447468c69ce4ad830057eede4ac203c196d0664cb592af436a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98235, "scanner": "repobility-docker", "fingerprint": "cb9034a0b0c27d8b84d565523704fdc7dda9f61fea37b6c88523230352ed0eff", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cb9034a0b0c27d8b84d565523704fdc7dda9f61fea37b6c88523230352ed0eff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98234, "scanner": "repobility-docker", "fingerprint": "fda675cafdcaed0990a7972c6d7cffb990de748e468218005db8ec4130d77e08", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fda675cafdcaed0990a7972c6d7cffb990de748e468218005db8ec4130d77e08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98233, "scanner": "repobility-docker", "fingerprint": "060259371c5d1b15d28d3a41e6dd5bd024ef74516f4fe2c10aa0d5313cf04bea", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|060259371c5d1b15d28d3a41e6dd5bd024ef74516f4fe2c10aa0d5313cf04bea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98230, "scanner": "repobility-docker", "fingerprint": "bff16832103455bc7cd542a35cda8f93f4ae06700960e19ac7ccb10fb53d8360", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bff16832103455bc7cd542a35cda8f93f4ae06700960e19ac7ccb10fb53d8360"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98229, "scanner": "repobility-docker", "fingerprint": "32e47171a1cbb108c49d489cc9ad4b5596856fe2d1446e8ab4b86a0454a68fc7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|32e47171a1cbb108c49d489cc9ad4b5596856fe2d1446e8ab4b86a0454a68fc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98228, "scanner": "repobility-docker", "fingerprint": "71fff40134e6564751f4648d0362f0b94983cd6a22da8bbded97624847c20b1b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71fff40134e6564751f4648d0362f0b94983cd6a22da8bbded97624847c20b1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98227, "scanner": "repobility-docker", "fingerprint": "f51d68e83422271345d7c4555fb818ba84b9b762277c1f77799651dfa8a828c3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f51d68e83422271345d7c4555fb818ba84b9b762277c1f77799651dfa8a828c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98218, "scanner": "repobility-docker", "fingerprint": "967192144ca014934193b9aac42dce3d9d5a1db86c946c18fd7645ba07914d3e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|967192144ca014934193b9aac42dce3d9d5a1db86c946c18fd7645ba07914d3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-bigquery-storage/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98215, "scanner": "repobility-docker", "fingerprint": "f4d67ba46137f76f88ffebf3ff9be1c42a0baf410b5147d2aa17e935fb026c2d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f4d67ba46137f76f88ffebf3ff9be1c42a0baf410b5147d2aa17e935fb026c2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-oauthlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98214, "scanner": "repobility-docker", "fingerprint": "36564af7e983c9c601976b24ba62dd68dbfdbeb044eb1271a6a29f1e8950b819", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|36564af7e983c9c601976b24ba62dd68dbfdbeb044eb1271a6a29f1e8950b819"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-oauthlib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98211, "scanner": "repobility-docker", "fingerprint": "1121195578cd9966626a6dbe8eb3ecac7a76fa2b535476d6b6edad24b8cc6522", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1121195578cd9966626a6dbe8eb3ecac7a76fa2b535476d6b6edad24b8cc6522"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-api-common-protos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98210, "scanner": "repobility-docker", "fingerprint": "b0b61c3b2eab822ba171eb98ece4021ed73360d167e2355b178e4bd6061a84fa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b0b61c3b2eab822ba171eb98ece4021ed73360d167e2355b178e4bd6061a84fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-py-api-common-protos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98207, "scanner": "repobility-docker", "fingerprint": "605f9c56b1dea47ec95ca84ec87fc4a80835fbdd87c7d6b96e1c800d02695987", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|605f9c56b1dea47ec95ca84ec87fc4a80835fbdd87c7d6b96e1c800d02695987"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-pubsub/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98202, "scanner": "repobility-docker", "fingerprint": "3c846f3d5a224eb6046c2a8b5e4e4502da095a16f720234ea05b29a5a90b3909", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3c846f3d5a224eb6046c2a8b5e4e4502da095a16f720234ea05b29a5a90b3909"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-httplib2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98201, "scanner": "repobility-docker", "fingerprint": "41aacff146e12b6694eb94f775ea06b0ef3026d1409dc744cd7345d677754c9b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|41aacff146e12b6694eb94f775ea06b0ef3026d1409dc744cd7345d677754c9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-httplib2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98200, "scanner": "repobility-docker", "fingerprint": "7e638896fa8fbaf1c145411ea29845dd2ca4524c8808fd0c0e763230593864ca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7e638896fa8fbaf1c145411ea29845dd2ca4524c8808fd0c0e763230593864ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-auth-httplib2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98197, "scanner": "repobility-docker", "fingerprint": "2f238bb5153a8447306e68cf8323b30d9457c6677b68ae790b661af9bcfd4bd1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2f238bb5153a8447306e68cf8323b30d9457c6677b68ae790b661af9bcfd4bd1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fwupd/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98196, "scanner": "repobility-docker", "fingerprint": "c5da7b5cb7eea624e7f47b997d2b1b3c9c01e2098b970ade009207b3029488f5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5da7b5cb7eea624e7f47b997d2b1b3c9c01e2098b970ade009207b3029488f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fwupd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98195, "scanner": "repobility-docker", "fingerprint": "e9864126766a9949aa959d80d9ceba12d6d520381d683544ab57a194474f7810", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e9864126766a9949aa959d80d9ceba12d6d520381d683544ab57a194474f7810"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fwupd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98190, "scanner": "repobility-docker", "fingerprint": "fbb28adb6e8c2c5f68efdaf6cc8e00170bf690a24e648e96ae8c9472d98ee5dd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fbb28adb6e8c2c5f68efdaf6cc8e00170bf690a24e648e96ae8c9472d98ee5dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-raksha/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98189, "scanner": "repobility-docker", "fingerprint": "c4cc5c992ad6b0b3f2c538c12843d86a1d3942c55e1904dd4da96a0cecd3c9ae", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c4cc5c992ad6b0b3f2c538c12843d86a1d3942c55e1904dd4da96a0cecd3c9ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzztest-raksha/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98183, "scanner": "repobility-docker", "fingerprint": "8641440d802192ebad73a72718718d2ef29050dd837abefa2cd7c383ea5f5537", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8641440d802192ebad73a72718718d2ef29050dd837abefa2cd7c383ea5f5537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98182, "scanner": "repobility-docker", "fingerprint": "802035c3bfb8b39c0776726468ad796b8bcb443770e0fb08f9d8492df73f2c3b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|802035c3bfb8b39c0776726468ad796b8bcb443770e0fb08f9d8492df73f2c3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98175, "scanner": "repobility-docker", "fingerprint": "655984dc7619aa28b17ea2a735827306d3c984dbe7234202a589d21d7cdaa462", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|655984dc7619aa28b17ea2a735827306d3c984dbe7234202a589d21d7cdaa462"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/frr/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98174, "scanner": "repobility-docker", "fingerprint": "df990a0a42d7b88fc78888aa3969386f06877387f5fbd4bb933cecfa483a01f8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|df990a0a42d7b88fc78888aa3969386f06877387f5fbd4bb933cecfa483a01f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/frr/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98171, "scanner": "repobility-docker", "fingerprint": "0f289fb9ae741498a0cdbf22aad2ab7f97f9b1e1f206d8753f5e76d4747facec", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0f289fb9ae741498a0cdbf22aad2ab7f97f9b1e1f206d8753f5e76d4747facec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fribidi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98170, "scanner": "repobility-docker", "fingerprint": "4b2906416cfe837e1eb47e2998ad010065dc748963288b9c986ca7ea01f9b83e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4b2906416cfe837e1eb47e2998ad010065dc748963288b9c986ca7ea01f9b83e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fribidi/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98166, "scanner": "repobility-docker", "fingerprint": "acd2e0d8b7c02cf4bc350d5569e3a90a36cafd3fd46b81cf23170b9e9e8ea050", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|acd2e0d8b7c02cf4bc350d5569e3a90a36cafd3fd46b81cf23170b9e9e8ea050"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 29}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98165, "scanner": "repobility-docker", "fingerprint": "c23ae3b1804af0396b6bacfd70161888a3a015b2eced4986279dbca9afa3b713", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c23ae3b1804af0396b6bacfd70161888a3a015b2eced4986279dbca9afa3b713"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98164, "scanner": "repobility-docker", "fingerprint": "2e8285e5c55d1ad6e672276b0c7c668517658e1b4a546c10e1cf96cd41a598ae", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2e8285e5c55d1ad6e672276b0c7c668517658e1b4a546c10e1cf96cd41a598ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freetype2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98161, "scanner": "repobility-docker", "fingerprint": "1715c75cf453cf1a1d18bd31d13993e3e0f651d8d46d4f8a1b334ac151afb120", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1715c75cf453cf1a1d18bd31d13993e3e0f651d8d46d4f8a1b334ac151afb120"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freerdp/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98160, "scanner": "repobility-docker", "fingerprint": "dac7f3d54358f6dc53d24098e7be1d7e441a86025254510aa1a44e4440d7862a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dac7f3d54358f6dc53d24098e7be1d7e441a86025254510aa1a44e4440d7862a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freerdp/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98157, "scanner": "repobility-docker", "fingerprint": "a510f5f686159cd50efa9c155fafc17f02220251cb29fd97f17673ccda667704", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a510f5f686159cd50efa9c155fafc17f02220251cb29fd97f17673ccda667704"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeradius/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98156, "scanner": "repobility-docker", "fingerprint": "35f60571e1b096cb862e096ce054f507e4a1eb62e0efff14ac0101ea58ecc096", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|35f60571e1b096cb862e096ce054f507e4a1eb62e0efff14ac0101ea58ecc096"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeradius/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98155, "scanner": "repobility-docker", "fingerprint": "ca7f00e99ce18841968933aaa0ff8026876602cc8aca5b79bea0f8796cc8cebe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ca7f00e99ce18841968933aaa0ff8026876602cc8aca5b79bea0f8796cc8cebe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeradius/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98154, "scanner": "repobility-docker", "fingerprint": "d17a3f41d14106afb14621ea7919cb5351117e50cae95adab8580d6dc3ca5871", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d17a3f41d14106afb14621ea7919cb5351117e50cae95adab8580d6dc3ca5871"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeradius/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98152, "scanner": "repobility-docker", "fingerprint": "0813181d8b367dfcae811c02fc69e5334dc88b8994ecc61306c17f73624df225", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0813181d8b367dfcae811c02fc69e5334dc88b8994ecc61306c17f73624df225"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeimage/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98151, "scanner": "repobility-docker", "fingerprint": "4450a7418fc039f8116bd3f2f358be968532d65f9bcf969d226f176f14794b7a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4450a7418fc039f8116bd3f2f358be968532d65f9bcf969d226f176f14794b7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/freeimage/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98146, "scanner": "repobility-docker", "fingerprint": "26989c1b29a94dc7fb804f04a146bf093c8559a9c93e32d22bde246024a71ec6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|26989c1b29a94dc7fb804f04a146bf093c8559a9c93e32d22bde246024a71ec6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fmt/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98145, "scanner": "repobility-docker", "fingerprint": "7951261c63fb00e337139e142ea04f42774ab598ba302c28aeac16ee1dd9457b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7951261c63fb00e337139e142ea04f42774ab598ba302c28aeac16ee1dd9457b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fmt/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98138, "scanner": "repobility-docker", "fingerprint": "4d8320e5d4108bf7d03810bc25eda934bd9cf6d7ab4ed0b17f99501f2c506977", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4d8320e5d4108bf7d03810bc25eda934bd9cf6d7ab4ed0b17f99501f2c506977"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fluent-bit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98137, "scanner": "repobility-docker", "fingerprint": "447099ab4cfd3ee20619d2cf7931db8659847377c8689e88d8330e6e369e2a99", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|447099ab4cfd3ee20619d2cf7931db8659847377c8689e88d8330e6e369e2a99"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fluent-bit/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98135, "scanner": "repobility-docker", "fingerprint": "ed32d3e31c9c51ec1ea27a5c029d68d3bd6ba2c1151f068f2e3ba6fea31fc204", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ed32d3e31c9c51ec1ea27a5c029d68d3bd6ba2c1151f068f2e3ba6fea31fc204"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98134, "scanner": "repobility-docker", "fingerprint": "246ae3d4f3c87ad6c4612156702f22851cd16a216483def17742f9e7c31599b6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|246ae3d4f3c87ad6c4612156702f22851cd16a216483def17742f9e7c31599b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flex/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98129, "scanner": "repobility-docker", "fingerprint": "6673ddf8e1bebf659b9ac9c7422d17727cb73bbb872e5acd36ba0d5fdff2d682", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6673ddf8e1bebf659b9ac9c7422d17727cb73bbb872e5acd36ba0d5fdff2d682"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flatbuffers/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98128, "scanner": "repobility-docker", "fingerprint": "d2ec760c7487f7e07b6c2487609a6b9fdb1e4b3aa3fd24f5c7376a054f88dd02", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d2ec760c7487f7e07b6c2487609a6b9fdb1e4b3aa3fd24f5c7376a054f88dd02"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flatbuffers/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98123, "scanner": "repobility-docker", "fingerprint": "20ac06fc3ceaff415b54e408f1d83eee57fa3462c04ef65e4a489b63f91cd4fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|20ac06fc3ceaff415b54e408f1d83eee57fa3462c04ef65e4a489b63f91cd4fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98122, "scanner": "repobility-docker", "fingerprint": "08f3bc53096930b555548be57bd341f6c7ea08c396025ad944d39fd594fc1215", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|08f3bc53096930b555548be57bd341f6c7ea08c396025ad944d39fd594fc1215"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask-restx/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98117, "scanner": "repobility-docker", "fingerprint": "a2bd1e2394f2a15a448d2a2f36f077d6ffdf5f717af31d6b0ec1eb5cbffaf848", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a2bd1e2394f2a15a448d2a2f36f077d6ffdf5f717af31d6b0ec1eb5cbffaf848"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98116, "scanner": "repobility-docker", "fingerprint": "6dd48633835081ccbf98e559c0759b6c3eaf996911ebfaccb689f89a537a91c2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6dd48633835081ccbf98e559c0759b6c3eaf996911ebfaccb689f89a537a91c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98115, "scanner": "repobility-docker", "fingerprint": "a4f82521cb84b53ea3e1a547d7157429f3c60b2c3a35244bd215464a85c65a26", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a4f82521cb84b53ea3e1a547d7157429f3c60b2c3a35244bd215464a85c65a26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98112, "scanner": "repobility-docker", "fingerprint": "b2fb6f2735ac4cbeb3fd3487671ab5ff917124566dc8f2ec8e9357ca931c8dd7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b2fb6f2735ac4cbeb3fd3487671ab5ff917124566dc8f2ec8e9357ca931c8dd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98111, "scanner": "repobility-docker", "fingerprint": "7691c5cefbd9fc02188e173779385f021b8b59c94ef9e7e85d8f91e4d7939008", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7691c5cefbd9fc02188e173779385f021b8b59c94ef9e7e85d8f91e4d7939008"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flac/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98108, "scanner": "repobility-docker", "fingerprint": "dce5cae0a7eb546218f5d092b1b3f4cb43a82fe2fbc3873dd027b4481479d641", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|dce5cae0a7eb546218f5d092b1b3f4cb43a82fe2fbc3873dd027b4481479d641"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firestore/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98107, "scanner": "repobility-docker", "fingerprint": "2063def49700c274073596fb76e4eb0ea562e69925a1c5981be4a457a6ffc4e6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2063def49700c274073596fb76e4eb0ea562e69925a1c5981be4a457a6ffc4e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firestore/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98104, "scanner": "repobility-docker", "fingerprint": "8f8a140f5633abaa94a8676138f6733e9b26c8dd2e99c95aa9ec24b335b94f1b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8f8a140f5633abaa94a8676138f6733e9b26c8dd2e99c95aa9ec24b335b94f1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firefox/Dockerfile"}, "region": {"startLine": 37}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98103, "scanner": "repobility-docker", "fingerprint": "37d2aca35f8454d968c1864bdc1e3bfa348eb6c8dd12312c9cee565c85277ce8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|37d2aca35f8454d968c1864bdc1e3bfa348eb6c8dd12312c9cee565c85277ce8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/firefox/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98100, "scanner": "repobility-docker", "fingerprint": "59e9b4dcb65ca1d436064e55b025a48dee36a8559e5b774af45d4ed4694b55d4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|59e9b4dcb65ca1d436064e55b025a48dee36a8559e5b774af45d4ed4694b55d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fips203/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98099, "scanner": "repobility-docker", "fingerprint": "63a42e1e4f8cab6d3f71672c900db0a09fe6f91e327930d93000ba45f00fb3d8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|63a42e1e4f8cab6d3f71672c900db0a09fe6f91e327930d93000ba45f00fb3d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fips203/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98096, "scanner": "repobility-docker", "fingerprint": "5f3a4623b3f58b8c6350c37683c259ff3d516ac86af5513f85ef3dd2c57eae8a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5f3a4623b3f58b8c6350c37683c259ff3d516ac86af5513f85ef3dd2c57eae8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98095, "scanner": "repobility-docker", "fingerprint": "2b1abe6736867d18a71cc797cdbe60554dfc002c5463b69df6a2435e8f1d50fc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2b1abe6736867d18a71cc797cdbe60554dfc002c5463b69df6a2435e8f1d50fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fio/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98090, "scanner": "repobility-docker", "fingerprint": "c33d9ff3ebe951934c8864d81c1364f6faba3fc477026d208b3cba4d72372153", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c33d9ff3ebe951934c8864d81c1364f6faba3fc477026d208b3cba4d72372153"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filelock/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98089, "scanner": "repobility-docker", "fingerprint": "d4019a504b2b92673afd4d183b95767e770e8cf0b165857c69096f1c29463782", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4019a504b2b92673afd4d183b95767e770e8cf0b165857c69096f1c29463782"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filelock/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98088, "scanner": "repobility-docker", "fingerprint": "c9f64e34cb23b201d71602c6fb88e375008174d034a94285ed5dd4b501db1c36", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c9f64e34cb23b201d71602c6fb88e375008174d034a94285ed5dd4b501db1c36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/filelock/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98085, "scanner": "repobility-docker", "fingerprint": "4b04f7a810078e8d0ce7ea9c52ba487cff6aca049f386332fa914eaeb2c6a057", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b04f7a810078e8d0ce7ea9c52ba487cff6aca049f386332fa914eaeb2c6a057"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98084, "scanner": "repobility-docker", "fingerprint": "1596c07c1fe970552270b25789cb0b986aa0c9dbb8b7e1133b91c9c39f27e07d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1596c07c1fe970552270b25789cb0b986aa0c9dbb8b7e1133b91c9c39f27e07d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98083, "scanner": "repobility-docker", "fingerprint": "9970672e16da8e4a2f87c160c73b86ba0130b7c0957878a96f0e3b4caf13ed45", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9970672e16da8e4a2f87c160c73b86ba0130b7c0957878a96f0e3b4caf13ed45"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98082, "scanner": "repobility-docker", "fingerprint": "dd07c455d3c21382784845d32930728b7191ec2d6ab7967fe1e329be0789f477", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dd07c455d3c21382784845d32930728b7191ec2d6ab7967fe1e329be0789f477"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98081, "scanner": "repobility-docker", "fingerprint": "b3a498ea8037beb6b30b1a9aea64630e89c6ad1987175acab9ccaa0d7b16ca5a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3a498ea8037beb6b30b1a9aea64630e89c6ad1987175acab9ccaa0d7b16ca5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98080, "scanner": "repobility-docker", "fingerprint": "122709914415256a7a7fc5a28f84f8fe1e636b28449ab8bb059ea8ed64392e55", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|122709914415256a7a7fc5a28f84f8fe1e636b28449ab8bb059ea8ed64392e55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98077, "scanner": "repobility-docker", "fingerprint": "3ba2a901c25f0c7dbf99c4fc9818ada0de3ec67efc6b133bb134158cd8e8ea0f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3ba2a901c25f0c7dbf99c4fc9818ada0de3ec67efc6b133bb134158cd8e8ea0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fftw3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98076, "scanner": "repobility-docker", "fingerprint": "5c946e4e0929471af71998d35e5d3f190264ede8282df568c4ab300d23b08bf5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5c946e4e0929471af71998d35e5d3f190264ede8282df568c4ab300d23b08bf5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fftw3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98073, "scanner": "repobility-docker", "fingerprint": "957e40bab87e060f71031fcd0358da0fb124e854ce660e0b2518edb46548ae27", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|957e40bab87e060f71031fcd0358da0fb124e854ce660e0b2518edb46548ae27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffms2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98072, "scanner": "repobility-docker", "fingerprint": "e4db50c6fb26ec7a1b717301d6d4cc2e8644ee82de12e3d6647a8612c81c49fc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e4db50c6fb26ec7a1b717301d6d4cc2e8644ee82de12e3d6647a8612c81c49fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffms2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 98069, "scanner": "repobility-docker", "fingerprint": "51f7c421184321dc7ced973c22b167cb9b930f0d81c11ffc1b996fa5d84b5bb5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|51f7c421184321dc7ced973c22b167cb9b930f0d81c11ffc1b996fa5d84b5bb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98068, "scanner": "repobility-docker", "fingerprint": "c5af70bab4a563950fb200698574b8e58bbc7144900ccb60da01f4361a98b9c7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c5af70bab4a563950fb200698574b8e58bbc7144900ccb60da01f4361a98b9c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98067, "scanner": "repobility-docker", "fingerprint": "78df8f245b5eb52d55ac0c040da371ad6984df3e0dfad15da3ba1447e016af28", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78df8f245b5eb52d55ac0c040da371ad6984df3e0dfad15da3ba1447e016af28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98066, "scanner": "repobility-docker", "fingerprint": "4b78b91d2116f7864e346c967dfc6a9226dd72a161eb2048aba60dd2e99ce6e3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b78b91d2116f7864e346c967dfc6a9226dd72a161eb2048aba60dd2e99ce6e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98065, "scanner": "repobility-docker", "fingerprint": "924f9c612234c5c3f0cd33395b2091a683d6771fcc22396cd0b83cd1e90b240a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|924f9c612234c5c3f0cd33395b2091a683d6771fcc22396cd0b83cd1e90b240a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ffmpeg/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98060, "scanner": "repobility-docker", "fingerprint": "14aa62327b51c6a10c35669da31a6b52d2425fe824f53c0585e0d975209d5234", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|14aa62327b51c6a10c35669da31a6b52d2425fe824f53c0585e0d975209d5234"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastjson2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98059, "scanner": "repobility-docker", "fingerprint": "7da1b3a3b76274854a59052f694a0669856560c10241bf7f44bf502d6a851623", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7da1b3a3b76274854a59052f694a0669856560c10241bf7f44bf502d6a851623"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastjson2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98051, "scanner": "repobility-docker", "fingerprint": "6a97a8816ba6a40ca96daba135c60353372f3add0326e6a192af67627cd945e5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a97a8816ba6a40ca96daba135c60353372f3add0326e6a192af67627cd945e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastcsv/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98050, "scanner": "repobility-docker", "fingerprint": "dbb9c7998afb5d953fe41043c14430cd5ca31e30be2cf4956d24749294d54643", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dbb9c7998afb5d953fe41043c14430cd5ca31e30be2cf4956d24749294d54643"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fastcsv/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98043, "scanner": "repobility-docker", "fingerprint": "2659047ba1a6f28facbae54e7742a9720c1e02005175370238da0ff905c8a8cf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2659047ba1a6f28facbae54e7742a9720c1e02005175370238da0ff905c8a8cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-dds/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98042, "scanner": "repobility-docker", "fingerprint": "0efa383df054762ac6e61eff684c23b13ba23ffa3bf106389958c96c8a009e6e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0efa383df054762ac6e61eff684c23b13ba23ffa3bf106389958c96c8a009e6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-dds/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98035, "scanner": "repobility-docker", "fingerprint": "c012d888283dfebbb693685cc82cfb8bcaa2e6f2fec4519b472ad99fe6f16f29", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c012d888283dfebbb693685cc82cfb8bcaa2e6f2fec4519b472ad99fe6f16f29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/faad2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98034, "scanner": "repobility-docker", "fingerprint": "795ba09a678a09365b3e4795713b8805f98dbadf49aba74f0474e4967336205d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|795ba09a678a09365b3e4795713b8805f98dbadf49aba74f0474e4967336205d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/faad2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98031, "scanner": "repobility-docker", "fingerprint": "ea0755a7ac3399f4a6031a4fbfc4d997beaba3e4083191778ce2c25d939c98f6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea0755a7ac3399f4a6031a4fbfc4d997beaba3e4083191778ce2c25d939c98f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exprtk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98030, "scanner": "repobility-docker", "fingerprint": "5e8dd6a34c49a6105de61db2966ea1e628ade0132126d350aa911b7c322ebefe", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5e8dd6a34c49a6105de61db2966ea1e628ade0132126d350aa911b7c322ebefe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/exprtk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98025, "scanner": "repobility-docker", "fingerprint": "435b2bb6aa52eeba9aefe256f16abdc58e97789bac9d45f4b292953fa93136e1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|435b2bb6aa52eeba9aefe256f16abdc58e97789bac9d45f4b292953fa93136e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expat/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98024, "scanner": "repobility-docker", "fingerprint": "a6761dd689e462695fef681f696aa1d21566487a5d8358fad87e585952f1359c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a6761dd689e462695fef681f696aa1d21566487a5d8358fad87e585952f1359c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/expat/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98017, "scanner": "repobility-docker", "fingerprint": "7e79274efbd0f510c16b327ff9db8ceb0e55ee517829d1d68d237b69b61e9fa7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e79274efbd0f510c16b327ff9db8ceb0e55ee517829d1d68d237b69b61e9fa7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/example/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98016, "scanner": "repobility-docker", "fingerprint": "64aed9d8043f771633d81013042c114aaae23a25d84673469d3959ac3dfb165e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|64aed9d8043f771633d81013042c114aaae23a25d84673469d3959ac3dfb165e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/example/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98009, "scanner": "repobility-docker", "fingerprint": "097b535810cb27dc2885d17b612c2c63ca265dd0f51c9a3077b9f346b1ddc2f7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|097b535810cb27dc2885d17b612c2c63ca265dd0f51c9a3077b9f346b1ddc2f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/et-xmlfile/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98008, "scanner": "repobility-docker", "fingerprint": "2199437565810e6d0349206ad964def50f9437b77d5896bf303f4d6df35ea29a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2199437565810e6d0349206ad964def50f9437b77d5896bf303f4d6df35ea29a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/et-xmlfile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98007, "scanner": "repobility-docker", "fingerprint": "1c924374a460c95a4f2547e829a7d7b6f458dc410af4f5f1a653405fc6e88880", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c924374a460c95a4f2547e829a7d7b6f458dc410af4f5f1a653405fc6e88880"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/et-xmlfile/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 98004, "scanner": "repobility-docker", "fingerprint": "be8da6bce8300436265b9833e214340d73102de7e2ca3b09a20ab5e4c779c0b5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be8da6bce8300436265b9833e214340d73102de7e2ca3b09a20ab5e4c779c0b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/espeak-ng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 98003, "scanner": "repobility-docker", "fingerprint": "e310f7b7148cdb6ee681c9461e382295ff496f239de6a088ff908028753b8739", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e310f7b7148cdb6ee681c9461e382295ff496f239de6a088ff908028753b8739"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/espeak-ng/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97995, "scanner": "repobility-docker", "fingerprint": "958cf93c83b3ba36ee9393ec4e93de5b32d09bed12c3d11ca51710c063734305", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|958cf93c83b3ba36ee9393ec4e93de5b32d09bed12c3d11ca51710c063734305"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/elfutils/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97994, "scanner": "repobility-docker", "fingerprint": "7f66ca9587bd05d062a218051ed3b7737b8994c7ef40b7c786329ae0da695bc3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7f66ca9587bd05d062a218051ed3b7737b8994c7ef40b7c786329ae0da695bc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/elfutils/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97992, "scanner": "repobility-docker", "fingerprint": "42a2642675a3e13939565733f1137068f7c5d2ab0e8d7a15c0aa6706da054b3c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42a2642675a3e13939565733f1137068f7c5d2ab0e8d7a15c0aa6706da054b3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eigen/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97991, "scanner": "repobility-docker", "fingerprint": "d80a23ef3f7775870b9e21702f57ae433f050cbffc9a27452b6c403e6f8675aa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d80a23ef3f7775870b9e21702f57ae433f050cbffc9a27452b6c403e6f8675aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eigen/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97988, "scanner": "repobility-docker", "fingerprint": "a9a42d06ec797d84377132aef8fdb76cf7486c2b6882f3b047c236bff191af18", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a9a42d06ec797d84377132aef8fdb76cf7486c2b6882f3b047c236bff191af18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/edk2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97987, "scanner": "repobility-docker", "fingerprint": "f049b63c92291c54351c0370edeef3764b792d40658b32e9cc94483238fe74fc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f049b63c92291c54351c0370edeef3764b792d40658b32e9cc94483238fe74fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/edk2/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97984, "scanner": "repobility-docker", "fingerprint": "feff7785479a489c134263b762b85adfb9420c08f0d7938987b970b69595dd1e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|feff7785479a489c134263b762b85adfb9420c08f0d7938987b970b69595dd1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eclipse-equinox/Dockerfile"}, "region": {"startLine": 57}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97983, "scanner": "repobility-docker", "fingerprint": "ec29e9ab4c8fbe66283945bde8e374a943141acc39ca541e7b3ddb10234c2fd6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ec29e9ab4c8fbe66283945bde8e374a943141acc39ca541e7b3ddb10234c2fd6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eclipse-equinox/Dockerfile"}, "region": {"startLine": 57}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97982, "scanner": "repobility-docker", "fingerprint": "73add07f5c09343bd31d77051b49bee679e160df447af016e76fa55e904440cc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|73add07f5c09343bd31d77051b49bee679e160df447af016e76fa55e904440cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eclipse-equinox/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97976, "scanner": "repobility-docker", "fingerprint": "cd65485aac6434b72fd9b6d216dbd1c78b841ea7b0b9b379cff9b809a95eeab8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cd65485aac6434b72fd9b6d216dbd1c78b841ea7b0b9b379cff9b809a95eeab8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97975, "scanner": "repobility-docker", "fingerprint": "bc9fdcf085f624b3888bc226a64db08bf8e3a03f74454cd1b6b6ed0b819ef651", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bc9fdcf085f624b3888bc226a64db08bf8e3a03f74454cd1b6b6ed0b819ef651"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97974, "scanner": "repobility-docker", "fingerprint": "cb9f5ca0643bbe65c129d0b9e76e1f582c5a2cc7c57ca1a8d7cc1cdd67f4945d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cb9f5ca0643bbe65c129d0b9e76e1f582c5a2cc7c57ca1a8d7cc1cdd67f4945d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97971, "scanner": "repobility-docker", "fingerprint": "82f1908aa2bd92cbfd32a5f0880227e9886b446ebe6465617291e64603b95989", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|82f1908aa2bd92cbfd32a5f0880227e9886b446ebe6465617291e64603b95989"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/easywsclient/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97970, "scanner": "repobility-docker", "fingerprint": "cf56e0e3710a187c21dc9451945d5efbc3ed6bef9ec6f42da9519c0dd5cd1211", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cf56e0e3710a187c21dc9451945d5efbc3ed6bef9ec6f42da9519c0dd5cd1211"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/easywsclient/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97967, "scanner": "repobility-docker", "fingerprint": "e30092174934a4170301ed393b270ffb8d81ee724712359486263be9dc3c5fd8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e30092174934a4170301ed393b270ffb8d81ee724712359486263be9dc3c5fd8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/e2fsprogs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97966, "scanner": "repobility-docker", "fingerprint": "26bd7e96f83c957fcfe53cb1b6c5f8658618feefd9b9397003e9a73b29a1ea05", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|26bd7e96f83c957fcfe53cb1b6c5f8658618feefd9b9397003e9a73b29a1ea05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/e2fsprogs/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97959, "scanner": "repobility-docker", "fingerprint": "564947cb8740ac2487c025ead329a66567f19d70f02098e668555f96d6f5c03c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|564947cb8740ac2487c025ead329a66567f19d70f02098e668555f96d6f5c03c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropbear/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97958, "scanner": "repobility-docker", "fingerprint": "b011f4e32713ea39d5a9a10495e4664e8b0928b9ea656f0916255ee41b6fb6ba", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b011f4e32713ea39d5a9a10495e4664e8b0928b9ea656f0916255ee41b6fb6ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropbear/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97954, "scanner": "repobility-docker", "fingerprint": "eade60d5bf1aa038918bbfdcfd466df936655e77df4a37e88eb831a83203106e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|eade60d5bf1aa038918bbfdcfd466df936655e77df4a37e88eb831a83203106e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/draco/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97953, "scanner": "repobility-docker", "fingerprint": "9a3e09f804532774ef10995cf625b9024a10741f3b3ce95c06b9f3e4d76bd262", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9a3e09f804532774ef10995cf625b9024a10741f3b3ce95c06b9f3e4d76bd262"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/draco/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97950, "scanner": "repobility-docker", "fingerprint": "2265acde4d3df363f6e82f8b4b67e29490a8b0db6f25be3f21353c89711e2081", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2265acde4d3df363f6e82f8b4b67e29490a8b0db6f25be3f21353c89711e2081"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dovecot/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97949, "scanner": "repobility-docker", "fingerprint": "e7a20a9c53dd3522f27803e005b2b99fd8737bf5f8d0c9fbba398eaf5b49eacd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e7a20a9c53dd3522f27803e005b2b99fd8737bf5f8d0c9fbba398eaf5b49eacd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dovecot/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97946, "scanner": "repobility-docker", "fingerprint": "cbedc0fddead48033ab54332c2957752d8b79e056c71b61af24bc76929a33a0a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|cbedc0fddead48033ab54332c2957752d8b79e056c71b61af24bc76929a33a0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/double-conversion/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97943, "scanner": "repobility-docker", "fingerprint": "549c8e5b1ab8ad92a0a61599dd8de5a707cb91f67686d4509145960b4ee6244f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|549c8e5b1ab8ad92a0a61599dd8de5a707cb91f67686d4509145960b4ee6244f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dom4j/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97940, "scanner": "repobility-docker", "fingerprint": "937dbb5df98596cd84e16c78f581e6b6ad398df499a63fa6526b03efaedad282", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|937dbb5df98596cd84e16c78f581e6b6ad398df499a63fa6526b03efaedad282"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docutils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97939, "scanner": "repobility-docker", "fingerprint": "8c15fa1f58b72ddee1c7dc117d54eb9fc1c7c25c91772f96d78ca47101cf71d9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8c15fa1f58b72ddee1c7dc117d54eb9fc1c7c25c91772f96d78ca47101cf71d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/docutils/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97932, "scanner": "repobility-docker", "fingerprint": "84651084f50f78552d48e754dce36a3f8f8aa58581bae500ae1f1add1d266408", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84651084f50f78552d48e754dce36a3f8f8aa58581bae500ae1f1add1d266408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnsmasq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97931, "scanner": "repobility-docker", "fingerprint": "fe0fa6ad4ceb462bf91f5f0252cc8ec8612156ee49f07ca2a4986325236463e7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fe0fa6ad4ceb462bf91f5f0252cc8ec8612156ee49f07ca2a4986325236463e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dnsmasq/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97928, "scanner": "repobility-docker", "fingerprint": "9bdf624f62c2514636ab3a359b137217c3369683f3560126f48049bb50937178", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9bdf624f62c2514636ab3a359b137217c3369683f3560126f48049bb50937178"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97927, "scanner": "repobility-docker", "fingerprint": "ba5c006728b840bc1a14fc617afbeeeeea96fd776281a166320a214853e2a6c5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ba5c006728b840bc1a14fc617afbeeeeea96fd776281a166320a214853e2a6c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97922, "scanner": "repobility-docker", "fingerprint": "6bf78a1560e2a1138e371f09cf7cd8936b12f23c9b2366c9b27957f7f37d9df7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6bf78a1560e2a1138e371f09cf7cd8936b12f23c9b2366c9b27957f7f37d9df7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97921, "scanner": "repobility-docker", "fingerprint": "ef6716d6c09cf76801a2cb8b9beb9b9a1cc8f15b6682a649bbd3c9daeb9a93db", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ef6716d6c09cf76801a2cb8b9beb9b9a1cc8f15b6682a649bbd3c9daeb9a93db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97919, "scanner": "repobility-docker", "fingerprint": "d8766b6ab87f9985af2787a089518a2a341f70f6effcc6fa118936db025779dc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d8766b6ab87f9985af2787a089518a2a341f70f6effcc6fa118936db025779dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/django/Dockerfile"}, "region": {"startLine": 51}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97918, "scanner": "repobility-docker", "fingerprint": "9b56901a28f0417c5142676e04df7603aefa676e5b285401cb32282150f4b7a8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9b56901a28f0417c5142676e04df7603aefa676e5b285401cb32282150f4b7a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/django/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97910, "scanner": "repobility-docker", "fingerprint": "fc72a8f70a438c311602006f39af390f551f9c93d537552a44def6e831e2d8c3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fc72a8f70a438c311602006f39af390f551f9c93d537552a44def6e831e2d8c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/digest/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97909, "scanner": "repobility-docker", "fingerprint": "124c2b285b121c8f34706b0012d5f18815df72f8c85bd1db754d15aff20bd079", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|124c2b285b121c8f34706b0012d5f18815df72f8c85bd1db754d15aff20bd079"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/digest/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97906, "scanner": "repobility-docker", "fingerprint": "5b5520c598e50fa6bc64bd59f03ff70ee34a5789803066c177caf795b1352011", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5b5520c598e50fa6bc64bd59f03ff70ee34a5789803066c177caf795b1352011"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/deno/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97894, "scanner": "repobility-docker", "fingerprint": "8667123e55a358d02acbcf9b4802d060a1a0439c76668b11b403c5af86dff824", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8667123e55a358d02acbcf9b4802d060a1a0439c76668b11b403c5af86dff824"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dav1d/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97889, "scanner": "repobility-docker", "fingerprint": "393649e1e09fd92bffccc67b2624083d2c2496c021fb2095cf0867e3cdda219d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|393649e1e09fd92bffccc67b2624083d2c2496c021fb2095cf0867e3cdda219d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/data-encoding/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97888, "scanner": "repobility-docker", "fingerprint": "e763ea1e8c6ec95deaa0ec095184858736822c9dc80e00f32e8b128c686cf5da", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e763ea1e8c6ec95deaa0ec095184858736822c9dc80e00f32e8b128c686cf5da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/data-encoding/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97885, "scanner": "repobility-docker", "fingerprint": "c729d09ef8307e427120a1077038a2f48fe118c9c3d938d81aa2264c31c0e4d5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c729d09ef8307e427120a1077038a2f48fe118c9c3d938d81aa2264c31c0e4d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dask/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97884, "scanner": "repobility-docker", "fingerprint": "30013efbde94dc08971951b4a34ee486f78e5cf3de89bc7484fd098a3ccfb7ba", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|30013efbde94dc08971951b4a34ee486f78e5cf3de89bc7484fd098a3ccfb7ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dask/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97881, "scanner": "repobility-docker", "fingerprint": "40919014dacc4296236d73c1e6e9d1347837a0d8ebdb39780441ce74bb185a42", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|40919014dacc4296236d73c1e6e9d1347837a0d8ebdb39780441ce74bb185a42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dart/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97880, "scanner": "repobility-docker", "fingerprint": "1241ca0b7dd5e8d49eb1de1933eee454774f835382ae4307dc94693244a0d2cc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1241ca0b7dd5e8d49eb1de1933eee454774f835382ae4307dc94693244a0d2cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dart/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97875, "scanner": "repobility-docker", "fingerprint": "9fb5b549e63d0e5d0e958b780008e6efd0474933fca181e502638b425502a9f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9fb5b549e63d0e5d0e958b780008e6efd0474933fca181e502638b425502a9f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cyclonedds/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97874, "scanner": "repobility-docker", "fingerprint": "9ab45ea84fd5f6541b3a0e6c4c155223c0976d5b3a54475a00e11c9444794ca5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9ab45ea84fd5f6541b3a0e6c4c155223c0976d5b3a54475a00e11c9444794ca5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cyclonedds/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97871, "scanner": "repobility-docker", "fingerprint": "96f4924762969b8f59797095d67b53e98efa00279b273e535d89fb061118527d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|96f4924762969b8f59797095d67b53e98efa00279b273e535d89fb061118527d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cxxopts/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97870, "scanner": "repobility-docker", "fingerprint": "1cc4baca90632233bf6ca3e0d44fd786eed297e4af6fdc36667bb61b8bb4b6c4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1cc4baca90632233bf6ca3e0d44fd786eed297e4af6fdc36667bb61b8bb4b6c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cxxopts/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97865, "scanner": "repobility-docker", "fingerprint": "be52236eab5bdf03c5a370d8bdda8c9ebb18b3a23bd385c73cae972653ba8212", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|be52236eab5bdf03c5a370d8bdda8c9ebb18b3a23bd385c73cae972653ba8212"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97864, "scanner": "repobility-docker", "fingerprint": "c47f6ba21d7ef858b66af9e030012044a9aa6e9c216453b3e942222c3e6e491e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c47f6ba21d7ef858b66af9e030012044a9aa6e9c216453b3e942222c3e6e491e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97863, "scanner": "repobility-docker", "fingerprint": "c6dfcc3455f710f95f9f91bb37a6da0e4500e81933be92208e29f2dcf484e12d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c6dfcc3455f710f95f9f91bb37a6da0e4500e81933be92208e29f2dcf484e12d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97862, "scanner": "repobility-docker", "fingerprint": "5e5432a18d85e905c0d46bf9eb5b4003ba1a2a442da33227295b7ca0dbb2404e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5e5432a18d85e905c0d46bf9eb5b4003ba1a2a442da33227295b7ca0dbb2404e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups-filters/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97859, "scanner": "repobility-docker", "fingerprint": "3abc584ba6692b9767ff454c8c518386001437b8d6033023fdc30c5cbdd4484a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3abc584ba6692b9767ff454c8c518386001437b8d6033023fdc30c5cbdd4484a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97858, "scanner": "repobility-docker", "fingerprint": "66ad8a89c3b2d892267b0295143fca29d9125c361e12c714d1590ce18fe433de", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|66ad8a89c3b2d892267b0295143fca29d9125c361e12c714d1590ce18fe433de"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cups/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97849, "scanner": "repobility-docker", "fingerprint": "9c327e18ca1dfc00d88a2a7dd9867b8cd04bc269e4f91d92b2f5652f5f87787d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9c327e18ca1dfc00d88a2a7dd9867b8cd04bc269e4f91d92b2f5652f5f87787d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptography/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97848, "scanner": "repobility-docker", "fingerprint": "84fb10fa35ef9f6a802009695eee89eb14f765cfe44cd9744ebac8928d60338a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|84fb10fa35ef9f6a802009695eee89eb14f765cfe44cd9744ebac8928d60338a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptography/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97846, "scanner": "repobility-docker", "fingerprint": "4a216eca67757d7f7cb2c2ff3e8a2f2e65c0ef5efb8b5d4db19852d4c5c7ac95", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4a216eca67757d7f7cb2c2ff3e8a2f2e65c0ef5efb8b5d4db19852d4c5c7ac95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptofuzz/Dockerfile"}, "region": {"startLine": 65}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97845, "scanner": "repobility-docker", "fingerprint": "263b1755813ed95608ce287fae640814e9e729f545273287fc34041594811fac", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|263b1755813ed95608ce287fae640814e9e729f545273287fc34041594811fac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptofuzz/Dockerfile"}, "region": {"startLine": 65}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97844, "scanner": "repobility-docker", "fingerprint": "00e5856b4b1a1f1047009d7e302f7c9ebf90fc285c7c2448f76fd066fdf11936", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|00e5856b4b1a1f1047009d7e302f7c9ebf90fc285c7c2448f76fd066fdf11936"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptofuzz/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97843, "scanner": "repobility-docker", "fingerprint": "a21f6e96825639d4e8bdeb23ef1f52eabc094b2dbdbd1a2d33b0f0821adafac9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a21f6e96825639d4e8bdeb23ef1f52eabc094b2dbdbd1a2d33b0f0821adafac9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptofuzz/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97841, "scanner": "repobility-docker", "fingerprint": "751e330b5db85b632a53c6251ab0e3fd8471b79ac879683acc42e4afb102c13b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|751e330b5db85b632a53c6251ab0e3fd8471b79ac879683acc42e4afb102c13b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crow/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97840, "scanner": "repobility-docker", "fingerprint": "547cbc5556c45ea137665a55c2fcaf2acbe084ec5ad3789df4de1d960708e45e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|547cbc5556c45ea137665a55c2fcaf2acbe084ec5ad3789df4de1d960708e45e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crow/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97837, "scanner": "repobility-docker", "fingerprint": "d1aef1406671cc7b010affd0982dae52c4d048e39135a0d44c3cc5351bf9bb6d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d1aef1406671cc7b010affd0982dae52c4d048e39135a0d44c3cc5351bf9bb6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/crosvm/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97828, "scanner": "repobility-docker", "fingerprint": "a3506620488f0c8094f8b427aee58ab6fe4ca3d7a7357ec265f5e5795fc261f0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a3506620488f0c8094f8b427aee58ab6fe4ca3d7a7357ec265f5e5795fc261f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/croaring/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97827, "scanner": "repobility-docker", "fingerprint": "d5f83afb0e3d9bd494985fb37a22fdfe40a1024f4652b7475c4f10007b2d4f44", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d5f83afb0e3d9bd494985fb37a22fdfe40a1024f4652b7475c4f10007b2d4f44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/croaring/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97825, "scanner": "repobility-docker", "fingerprint": "b39a6342a8711a834cc9f806bcd80eafee323a128f8db6c7ce5dd86606f22f50", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b39a6342a8711a834cc9f806bcd80eafee323a128f8db6c7ce5dd86606f22f50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cri-o/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97824, "scanner": "repobility-docker", "fingerprint": "1b1e7f291989a50afdc2a74985e14352bbc61111b4959fa9bc9a3ff4aea30dfe", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1b1e7f291989a50afdc2a74985e14352bbc61111b4959fa9bc9a3ff4aea30dfe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cri-o/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97820, "scanner": "repobility-docker", "fingerprint": "ae4e4dc3abaeaa83e8b2540b68c2638ea2f2f51b03325456e787b75454f4c90a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ae4e4dc3abaeaa83e8b2540b68c2638ea2f2f51b03325456e787b75454f4c90a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cras/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97817, "scanner": "repobility-docker", "fingerprint": "318a77b968e495033eacb3607453f3d145744654d54c02fcb7d7da96eac50b35", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|318a77b968e495033eacb3607453f3d145744654d54c02fcb7d7da96eac50b35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpython3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97816, "scanner": "repobility-docker", "fingerprint": "216cf0fd7b07c4bc181aed9958e22a6375d6a2a3bebf82ffd8d5778a6c64a135", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|216cf0fd7b07c4bc181aed9958e22a6375d6a2a3bebf82ffd8d5778a6c64a135"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpython3/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97813, "scanner": "repobility-docker", "fingerprint": "8346769d2072704ae7afa0bf8a8531067d6ea49591974b9bef0b1913e96e5f94", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8346769d2072704ae7afa0bf8a8531067d6ea49591974b9bef0b1913e96e5f94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpuinfo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97812, "scanner": "repobility-docker", "fingerprint": "e84c666aa378bdb8ec027f3d6da195a27c79e77db74b76fe7a6a78892dacf25d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e84c666aa378bdb8ec027f3d6da195a27c79e77db74b76fe7a6a78892dacf25d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpuinfo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97809, "scanner": "repobility-docker", "fingerprint": "95726f796787fa8df1d81784912e004028fd10627ba3d15e3155d1db6701f576", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|95726f796787fa8df1d81784912e004028fd10627ba3d15e3155d1db6701f576"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppitertools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97808, "scanner": "repobility-docker", "fingerprint": "54896c9ef5841576dc3e6eb0a28225704e5a80b8b3a2a5077d59eb0690e55ec6", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|54896c9ef5841576dc3e6eb0a28225704e5a80b8b3a2a5077d59eb0690e55ec6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cppitertools/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97803, "scanner": "repobility-docker", "fingerprint": "ddff1abaa6d0aad9dba771a4c9a8143b980c686e1bc974f06c3795cd38f3213b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ddff1abaa6d0aad9dba771a4c9a8143b980c686e1bc974f06c3795cd38f3213b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97802, "scanner": "repobility-docker", "fingerprint": "e87f5e1eba680f47996a6396b85d9344b5ddae497cbc3a7b357cbcaba308046f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e87f5e1eba680f47996a6396b85d9344b5ddae497cbc3a7b357cbcaba308046f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97801, "scanner": "repobility-docker", "fingerprint": "71d0855734dccc1555eb39744b5e1ed2bbe8bd0513c037474e5059291b772f7a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|71d0855734dccc1555eb39744b5e1ed2bbe8bd0513c037474e5059291b772f7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97800, "scanner": "repobility-docker", "fingerprint": "43c6b21dd733944893fc1fe1cb3467fcde423a09cfe52036f128ecf9ec9090a8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|43c6b21dd733944893fc1fe1cb3467fcde423a09cfe52036f128ecf9ec9090a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97799, "scanner": "repobility-docker", "fingerprint": "9a6e3fd253af1c26d0923924f3c15dae8de70b550c4785ad59273e587588bed3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9a6e3fd253af1c26d0923924f3c15dae8de70b550c4785ad59273e587588bed3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cpp-httplib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97796, "scanner": "repobility-docker", "fingerprint": "035110c0f2315642b21aedf8b644e71e4e7fe24ef4a23768f5fbaef1187c739e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|035110c0f2315642b21aedf8b644e71e4e7fe24ef4a23768f5fbaef1187c739e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coveragepy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97795, "scanner": "repobility-docker", "fingerprint": "155e34f4d5c297f08896a502979508e13b1e2ca713b75bd402e00744b9c2ab5c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|155e34f4d5c297f08896a502979508e13b1e2ca713b75bd402e00744b9c2ab5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coveragepy/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97792, "scanner": "repobility-docker", "fingerprint": "b4e4d63dd6795d1e31ca6ef6405fb85b2ee9fc889c06f5e8491870e93e3f9098", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b4e4d63dd6795d1e31ca6ef6405fb85b2ee9fc889c06f5e8491870e93e3f9098"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coturn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97791, "scanner": "repobility-docker", "fingerprint": "ccd2b5130b29c9eda89469efa9c608ffdc8f2217c7bfcf633076e508df5fdf9e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ccd2b5130b29c9eda89469efa9c608ffdc8f2217c7bfcf633076e508df5fdf9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/coturn/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97786, "scanner": "repobility-docker", "fingerprint": "e0d2033eedbf071fec5ffe797a21b4be18442b6e9a08dff408315e7e0e54047c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e0d2033eedbf071fec5ffe797a21b4be18442b6e9a08dff408315e7e0e54047c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/containerd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97785, "scanner": "repobility-docker", "fingerprint": "0c9debff13a09117b48dd291375c0a298d3b11cf87bfb9ca8eb24231cdd987cf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0c9debff13a09117b48dd291375c0a298d3b11cf87bfb9ca8eb24231cdd987cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/containerd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97780, "scanner": "repobility-docker", "fingerprint": "4523a569726d52625c86b2e30adaae57a5701b6519aaac6d6b03fde5c066cee1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4523a569726d52625c86b2e30adaae57a5701b6519aaac6d6b03fde5c066cee1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/connectedhomeip/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97778, "scanner": "repobility-docker", "fingerprint": "d1b253ce30d1158a247a08665a65e9eac92b2193ae76c036c0bf0f25944462fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d1b253ce30d1158a247a08665a65e9eac92b2193ae76c036c0bf0f25944462fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/configparser/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97771, "scanner": "repobility-docker", "fingerprint": "c95e7081a41b8ec18639dab8c175e1ae86ae1e3e30ef7c2e936618b1a2ae256f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c95e7081a41b8ec18639dab8c175e1ae86ae1e3e30ef7c2e936618b1a2ae256f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cockroachdb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97770, "scanner": "repobility-docker", "fingerprint": "35288dc1a9c39bb21ef3dc969b1bf9c9529c5baf81ab98adad001b3885f002e2", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|35288dc1a9c39bb21ef3dc969b1bf9c9529c5baf81ab98adad001b3885f002e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cockroachdb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97767, "scanner": "repobility-docker", "fingerprint": "19d55b0e7f05a5299fc0e7d1c0486bb7778830fd5900378107aab427594ecdc1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|19d55b0e7f05a5299fc0e7d1c0486bb7778830fd5900378107aab427594ecdc1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmark/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97766, "scanner": "repobility-docker", "fingerprint": "10cd32d57a45d93fef9f0a6c2a821ce80b10d39d194a1dd6428f3ba0b2c20615", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|10cd32d57a45d93fef9f0a6c2a821ce80b10d39d194a1dd6428f3ba0b2c20615"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmark/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97763, "scanner": "repobility-docker", "fingerprint": "03d11a4d6bb3b789afdc5b0225df78ff113b3c0e18149ba43c3a0215046d10c1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03d11a4d6bb3b789afdc5b0225df78ff113b3c0e18149ba43c3a0215046d10c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmake/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97762, "scanner": "repobility-docker", "fingerprint": "34d5b3cff6a5b49b6a243912c8031d60210a844f85d111a7d1f24ebcfa9bb259", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|34d5b3cff6a5b49b6a243912c8031d60210a844f85d111a7d1f24ebcfa9bb259"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cmake/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97755, "scanner": "repobility-docker", "fingerprint": "60e39045f667d12d44d9eb927fb2c1823bf6165c86f2a3c010851bbd90c350ce", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|60e39045f667d12d44d9eb927fb2c1823bf6165c86f2a3c010851bbd90c350ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97748, "scanner": "repobility-docker", "fingerprint": "2d6ff87e85c749c912493c938b76c3da048f9da56cd4ed397399c80777479e4b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2d6ff87e85c749c912493c938b76c3da048f9da56cd4ed397399c80777479e4b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clickhouse/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97744, "scanner": "repobility-docker", "fingerprint": "d3dc8e4102969b1e0b4533a93a2553c1e9852d61c19d6cd430ce9993329bd659", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d3dc8e4102969b1e0b4533a93a2553c1e9852d61c19d6cd430ce9993329bd659"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97743, "scanner": "repobility-docker", "fingerprint": "5ab7cb1dd9b200e1ed06d06508c87aa656341a8c1a39247b09c027ed30f36f23", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5ab7cb1dd9b200e1ed06d06508c87aa656341a8c1a39247b09c027ed30f36f23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clib/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97740, "scanner": "repobility-docker", "fingerprint": "fcc498213ad03e59e7afa6663042f2acdaae7970058cbc3aa1391ddd78fe19fb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fcc498213ad03e59e7afa6663042f2acdaae7970058cbc3aa1391ddd78fe19fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 34}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97739, "scanner": "repobility-docker", "fingerprint": "ce1a1a08d3e45a7264a6a5a7ceb7e659a746e0dfe11dc55e4154e8b544ab07c3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ce1a1a08d3e45a7264a6a5a7ceb7e659a746e0dfe11dc55e4154e8b544ab07c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 33}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97738, "scanner": "repobility-docker", "fingerprint": "204ca1002a64a1cef0f2d803467f4dff1efbd87194e791b4ec43d6c352070d87", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|204ca1002a64a1cef0f2d803467f4dff1efbd87194e791b4ec43d6c352070d87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97737, "scanner": "repobility-docker", "fingerprint": "8d12800efb655ca20e05b3f0da4ea97191a7c8ee094c53a42633d477a7e33531", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8d12800efb655ca20e05b3f0da4ea97191a7c8ee094c53a42633d477a7e33531"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/clamav/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97734, "scanner": "repobility-docker", "fingerprint": "f5a782e5efd2bc482822f5542c237613dee0d2d15af339f06e403d8228d58b60", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|f5a782e5efd2bc482822f5542c237613dee0d2d15af339f06e403d8228d58b60"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cjson/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97733, "scanner": "repobility-docker", "fingerprint": "7c147b864b8d9d3d943415564c9fde8e7dad3238f68677dde9a91726ff65f0cf", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7c147b864b8d9d3d943415564c9fde8e7dad3238f68677dde9a91726ff65f0cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cjson/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97730, "scanner": "repobility-docker", "fingerprint": "d162e4a3115fe9f8b930e60eeea90fe57574a1ddbbf361faa289771079e69fab", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d162e4a3115fe9f8b930e60eeea90fe57574a1ddbbf361faa289771079e69fab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/civetweb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97729, "scanner": "repobility-docker", "fingerprint": "31066975a1d51ed006e08a357f673829a9bc368528e780fafa164619e227a8d1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|31066975a1d51ed006e08a357f673829a9bc368528e780fafa164619e227a8d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/civetweb/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97724, "scanner": "repobility-docker", "fingerprint": "d94cf6e6a3ea8488512d9925dd46dac9173f619c571331d4a9957276912cebc5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d94cf6e6a3ea8488512d9925dd46dac9173f619c571331d4a9957276912cebc5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/circl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97723, "scanner": "repobility-docker", "fingerprint": "aa661e7ae9518965b1209c4354cff618146a606396a77d2dbab7c83a5b3e11a4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aa661e7ae9518965b1209c4354cff618146a606396a77d2dbab7c83a5b3e11a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/circl/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97720, "scanner": "repobility-docker", "fingerprint": "2db0596306bac0ec18bedc03b383328417b2a1389ca4dc41bd3f012aca113855", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2db0596306bac0ec18bedc03b383328417b2a1389ca4dc41bd3f012aca113855"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cilium/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97719, "scanner": "repobility-docker", "fingerprint": "a0858aadbf5ced708c1c80f65c8ae3c037b0fbe1551f871e561c955b4f52ee63", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a0858aadbf5ced708c1c80f65c8ae3c037b0fbe1551f871e561c955b4f52ee63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cilium/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97711, "scanner": "repobility-docker", "fingerprint": "20452130c88f54f1f9858818bef1987836fd36a853a91e65973e08a992ce3bfb", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|20452130c88f54f1f9858818bef1987836fd36a853a91e65973e08a992ce3bfb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checker-framework/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97710, "scanner": "repobility-docker", "fingerprint": "b24bb674ba0d479bf47e3f5f156540bdd561a05d84f502e4c5c25dc157f678d9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b24bb674ba0d479bf47e3f5f156540bdd561a05d84f502e4c5c25dc157f678d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/checker-framework/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97707, "scanner": "repobility-docker", "fingerprint": "0d1c8e351a9a6f6fa7d83c5a05886afb10eaa81d61ad52215374f1377d24e5c9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0d1c8e351a9a6f6fa7d83c5a05886afb10eaa81d61ad52215374f1377d24e5c9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/charset_normalizer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97706, "scanner": "repobility-docker", "fingerprint": "282083002a37215b7b1d4ebdfc929be8204edce1e160cb3a8bc61571567ef9d8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|282083002a37215b7b1d4ebdfc929be8204edce1e160cb3a8bc61571567ef9d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/charset_normalizer/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97699, "scanner": "repobility-docker", "fingerprint": "4b57469e41853ea6ae007e712fd96d0acbfc79db3cc99b1d70a33da06728fae3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|4b57469e41853ea6ae007e712fd96d0acbfc79db3cc99b1d70a33da06728fae3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cgif/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97698, "scanner": "repobility-docker", "fingerprint": "dcbeb15a0b2fdeee1725baf12c688b27425bf3cf7c08e0197ae27eec8b3fb42f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dcbeb15a0b2fdeee1725baf12c688b27425bf3cf7c08e0197ae27eec8b3fb42f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cgif/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97695, "scanner": "repobility-docker", "fingerprint": "1011e7e6e19ee0ffb410b774f007a942ff810fcec789612adf72e6cafa16c96e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1011e7e6e19ee0ffb410b774f007a942ff810fcec789612adf72e6cafa16c96e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cffi/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97692, "scanner": "repobility-docker", "fingerprint": "d84247f5c27c254ae0be493be50dc2afe8c8d0283a3bbda4312045c98cb39123", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d84247f5c27c254ae0be493be50dc2afe8c8d0283a3bbda4312045c98cb39123"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cfengine/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97691, "scanner": "repobility-docker", "fingerprint": "39b232e68ae701ab69db535730398d37790ce864fd78c3a6d21a7a7475959717", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|39b232e68ae701ab69db535730398d37790ce864fd78c3a6d21a7a7475959717"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cfengine/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97686, "scanner": "repobility-docker", "fingerprint": "7b2c511aa431e9908765d7a622b15980347d762b75f26a35bde43919d2450eae", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7b2c511aa431e9908765d7a622b15980347d762b75f26a35bde43919d2450eae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97685, "scanner": "repobility-docker", "fingerprint": "bf435cd718410303167d024a68ad9932e55939237c47d8a9885cb054d2864a69", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|bf435cd718410303167d024a68ad9932e55939237c47d8a9885cb054d2864a69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97682, "scanner": "repobility-docker", "fingerprint": "28f9e8965ce7c1a90c887329ddd3381235c6bd3437f296e6159a3840ebbb505a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|28f9e8965ce7c1a90c887329ddd3381235c6bd3437f296e6159a3840ebbb505a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97681, "scanner": "repobility-docker", "fingerprint": "925e841f5ea71ccfbdeb444296d951280a70b999e1d930d8c18b6c595fe98ba7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|925e841f5ea71ccfbdeb444296d951280a70b999e1d930d8c18b6c595fe98ba7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-cpp/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97678, "scanner": "repobility-docker", "fingerprint": "7c1dcdadd6e289a2a64c81c5abd385d1ade81c566fa98d150babb193336c0d06", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7c1dcdadd6e289a2a64c81c5abd385d1ade81c566fa98d150babb193336c0d06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cctz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97677, "scanner": "repobility-docker", "fingerprint": "4653b8896e84af97e4b5d51e89376619007dbf294e5dc10e43534ac91b3c0c85", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4653b8896e84af97e4b5d51e89376619007dbf294e5dc10e43534ac91b3c0c85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cctz/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97673, "scanner": "repobility-docker", "fingerprint": "728fe633244bf99a1ce51034388dfdae93fdf70f7c52fd30d320711ce5348128", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|728fe633244bf99a1ce51034388dfdae93fdf70f7c52fd30d320711ce5348128"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cbor-java/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97672, "scanner": "repobility-docker", "fingerprint": "e18d6d3eecf8e27e3b3577314202b6e5bb3da7b2107cd6886a803e2f59a9f287", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e18d6d3eecf8e27e3b3577314202b6e5bb3da7b2107cd6886a803e2f59a9f287"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cbor-java/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97670, "scanner": "repobility-docker", "fingerprint": "44e9bc3308e56b8c8712b92bcd9092d74e06c06cf7018ea40e48e6a91e36f1e0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|44e9bc3308e56b8c8712b92bcd9092d74e06c06cf7018ea40e48e6a91e36f1e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/casync/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97669, "scanner": "repobility-docker", "fingerprint": "790d890efd4bdf6fc0ab1f4bc12ea3172a0f68ba018cf9c4aa6467b8c1644b1e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|790d890efd4bdf6fc0ab1f4bc12ea3172a0f68ba018cf9c4aa6467b8c1644b1e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/casync/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97664, "scanner": "repobility-docker", "fingerprint": "2418452b02782099cfa5b8fd4448a476ab835aafa81f7928db7f0dcecb6c6b30", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2418452b02782099cfa5b8fd4448a476ab835aafa81f7928db7f0dcecb6c6b30"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capstone/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97663, "scanner": "repobility-docker", "fingerprint": "d54f50388ff1261ed94f831f311a0de5d91e929160ecd073304cbf55ed79f22c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d54f50388ff1261ed94f831f311a0de5d91e929160ecd073304cbf55ed79f22c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capstone/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97660, "scanner": "repobility-docker", "fingerprint": "c4f7487aa8d3dd6f717961496518990a955b62ba883a09388d3f0606de01004c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c4f7487aa8d3dd6f717961496518990a955b62ba883a09388d3f0606de01004c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capnproto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97659, "scanner": "repobility-docker", "fingerprint": "0c9b0df5fd28608d63e399672825b5fa5d3024af17a2ec07a5c9d23f228d9367", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0c9b0df5fd28608d63e399672825b5fa5d3024af17a2ec07a5c9d23f228d9367"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/capnproto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97649, "scanner": "repobility-docker", "fingerprint": "5ef69c53e11836d9a856ce5612b58f4bb57b16040cd5e862b725675112cded90", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5ef69c53e11836d9a856ce5612b58f4bb57b16040cd5e862b725675112cded90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97648, "scanner": "repobility-docker", "fingerprint": "1fc1e96eb650449e52c7d55a5c4289f99677ea48b32c06ff9f0471b4b7271f58", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1fc1e96eb650449e52c7d55a5c4289f99677ea48b32c06ff9f0471b4b7271f58"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97645, "scanner": "repobility-docker", "fingerprint": "7d5b247450746ad1ce64b3ad0243a097061f34bc4df966cf18316db394366352", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d5b247450746ad1ce64b3ad0243a097061f34bc4df966cf18316db394366352"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caffeine/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97644, "scanner": "repobility-docker", "fingerprint": "902e2135d83caea78cfbaec083df201bda128de13d08e22f11f7b4995045a9a4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|902e2135d83caea78cfbaec083df201bda128de13d08e22f11f7b4995045a9a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/caffeine/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97637, "scanner": "repobility-docker", "fingerprint": "ad9c775f6a216fcd46989f42d76e902df9a55b3cfe9f4e33cdf8aaf0c41eaef2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ad9c775f6a216fcd46989f42d76e902df9a55b3cfe9f4e33cdf8aaf0c41eaef2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97636, "scanner": "repobility-docker", "fingerprint": "987d77e3dc98a0d1bec30bf93e988ec10e3aa3f53a64e32f0d764e7115ccb698", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|987d77e3dc98a0d1bec30bf93e988ec10e3aa3f53a64e32f0d764e7115ccb698"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc2/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97634, "scanner": "repobility-docker", "fingerprint": "e27776de909681c6807a388b7aac2189ffbe36f0b0dd9f408996b879d8b9e603", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e27776de909681c6807a388b7aac2189ffbe36f0b0dd9f408996b879d8b9e603"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97633, "scanner": "repobility-docker", "fingerprint": "9af213d44318d391623d1d0ca4a5fafcf24dbac8817614e1785d8117969a320b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9af213d44318d391623d1d0ca4a5fafcf24dbac8817614e1785d8117969a320b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-blosc/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97630, "scanner": "repobility-docker", "fingerprint": "e56883cec2229aaba8309551f4d12b00803e50d71e4780baa4fce9b169c6fa9f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|e56883cec2229aaba8309551f4d12b00803e50d71e4780baa4fce9b169c6fa9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-ares/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97629, "scanner": "repobility-docker", "fingerprint": "894a61e97d16b773d32d9a6fea0fae1d3e63559ff1782567985adb48cb4df9ec", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|894a61e97d16b773d32d9a6fea0fae1d3e63559ff1782567985adb48cb4df9ec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/c-ares/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97622, "scanner": "repobility-docker", "fingerprint": "98396a21c3d304a1aca00af7a5c1d7d0abdda1d391b7428d080b37698eb4bf09", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|98396a21c3d304a1aca00af7a5c1d7d0abdda1d391b7428d080b37698eb4bf09"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/burntsushi-toml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97621, "scanner": "repobility-docker", "fingerprint": "8562c0814347ef8acbffad43ac8716d7e538241f45637c0526d9871ca10a1b4e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8562c0814347ef8acbffad43ac8716d7e538241f45637c0526d9871ca10a1b4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/burntsushi-toml/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97618, "scanner": "repobility-docker", "fingerprint": "0cc8b3237eaca1ef190c6abbf57eb73eff0c919c01397a2bff6cea2257459ea8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0cc8b3237eaca1ef190c6abbf57eb73eff0c919c01397a2bff6cea2257459ea8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bson-rust/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97617, "scanner": "repobility-docker", "fingerprint": "4ebe4a1534f2cb87708c063fb2bd571b34c1ee2115d75597f5854a75196ff4d4", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4ebe4a1534f2cb87708c063fb2bd571b34c1ee2115d75597f5854a75196ff4d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bson-rust/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97614, "scanner": "repobility-docker", "fingerprint": "ec02b8b97fa1b78099e27e77175d00bd0867c46e65f3ccf0febd51e8b75821db", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ec02b8b97fa1b78099e27e77175d00bd0867c46e65f3ccf0febd51e8b75821db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97613, "scanner": "repobility-docker", "fingerprint": "40c23f1f2566ca1caeadd35de2672036a737175ba6653abdc1a67cdefd08fb7b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|40c23f1f2566ca1caeadd35de2672036a737175ba6653abdc1a67cdefd08fb7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97612, "scanner": "repobility-docker", "fingerprint": "6b10901261e5fa179157e4d7052b6a24b07f3379823e88d252e1fcf4d99e6005", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6b10901261e5fa179157e4d7052b6a24b07f3379823e88d252e1fcf4d99e6005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97611, "scanner": "repobility-docker", "fingerprint": "7caabadda26691835f23c5433a9937a04399685a5c711cf180ec6fcc06233de5", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7caabadda26691835f23c5433a9937a04399685a5c711cf180ec6fcc06233de5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97610, "scanner": "repobility-docker", "fingerprint": "ead4d2d2ae6e8c0b5289ac29697307a59ade51df112bb795f056aebef142d06c", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ead4d2d2ae6e8c0b5289ac29697307a59ade51df112bb795f056aebef142d06c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97608, "scanner": "repobility-docker", "fingerprint": "33810f0dc1b573d38d0c874e006deb0ece9a18f2c176600ef1ad6bbafb22ca43", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|33810f0dc1b573d38d0c874e006deb0ece9a18f2c176600ef1ad6bbafb22ca43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brunsli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97607, "scanner": "repobility-docker", "fingerprint": "5925842ad287280bfdd7ef40e18c2ad7d822c1856878e4677b59fae6a0a447fb", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5925842ad287280bfdd7ef40e18c2ad7d822c1856878e4677b59fae6a0a447fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brunsli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97605, "scanner": "repobility-docker", "fingerprint": "6af23dbf044c1349643a5f285285a5e416bce2c2da957161e0efc0178d5158d0", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6af23dbf044c1349643a5f285285a5e416bce2c2da957161e0efc0178d5158d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brpc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97604, "scanner": "repobility-docker", "fingerprint": "4c7aeff48f43ac943dfd71f59b8f7d5462e830dc9f1fda40846860dfdc7943ea", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4c7aeff48f43ac943dfd71f59b8f7d5462e830dc9f1fda40846860dfdc7943ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brpc/Dockerfile"}, "region": {"startLine": 17}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97602, "scanner": "repobility-docker", "fingerprint": "5c573cf9612d51b5410ebcfa4dfd66e6548613395128b7f8e9525df967156183", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c573cf9612d51b5410ebcfa4dfd66e6548613395128b7f8e9525df967156183"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli-java/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97601, "scanner": "repobility-docker", "fingerprint": "435b6b71347237c42f282fa76f95928aa2fa7f53380e00bfd44a860249e61bff", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|435b6b71347237c42f282fa76f95928aa2fa7f53380e00bfd44a860249e61bff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli-java/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97598, "scanner": "repobility-docker", "fingerprint": "02b11de4df85dfa57008e5f104bbfc30310a3ab1870ad1f9838b065deae68658", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|02b11de4df85dfa57008e5f104bbfc30310a3ab1870ad1f9838b065deae68658"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97597, "scanner": "repobility-docker", "fingerprint": "23bb7929a37733bceb749ce69723d9002b7e69a0eacfe4a2fb1c313c73634a71", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|23bb7929a37733bceb749ce69723d9002b7e69a0eacfe4a2fb1c313c73634a71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/brotli/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97594, "scanner": "repobility-docker", "fingerprint": "8a9fcb518f33c15d02323567c49a95d830a050ad57c6ece60579fa7d8d3cb0a6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8a9fcb518f33c15d02323567c49a95d830a050ad57c6ece60579fa7d8d3cb0a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bottleneck/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97593, "scanner": "repobility-docker", "fingerprint": "b7e0e198f301501fe0ee3874564b7fdb8bb2a42259d4ba0443890d9fc6854048", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b7e0e198f301501fe0ee3874564b7fdb8bb2a42259d4ba0443890d9fc6854048"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bottleneck/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97588, "scanner": "repobility-docker", "fingerprint": "7d810113814089df156b8cf4c29e7ecfa2ddbecf89301bbd1663d5938bab05f9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7d810113814089df156b8cf4c29e7ecfa2ddbecf89301bbd1663d5938bab05f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botan/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97587, "scanner": "repobility-docker", "fingerprint": "65cbf616a45e763b1541ea75b75d0c92aea4efbcefba899cac319b55d9ebe85e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|65cbf616a45e763b1541ea75b75d0c92aea4efbcefba899cac319b55d9ebe85e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/botan/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97584, "scanner": "repobility-docker", "fingerprint": "3e50dc7c113c96126fbda98518befd0d4fd699973dcb399c58dc29d5c4d8318d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3e50dc7c113c96126fbda98518befd0d4fd699973dcb399c58dc29d5c4d8318d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boringssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97583, "scanner": "repobility-docker", "fingerprint": "4056f987dc689775d7a49ec043f17012489d85e1deb0b45fec99dd7fde7104c5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4056f987dc689775d7a49ec043f17012489d85e1deb0b45fec99dd7fde7104c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boringssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97577, "scanner": "repobility-docker", "fingerprint": "7e4e088eca8a021b2dc96f05958d75b55c68109fc1946a6fdb10e4c28e756c93", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7e4e088eca8a021b2dc96f05958d75b55c68109fc1946a6fdb10e4c28e756c93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97576, "scanner": "repobility-docker", "fingerprint": "7dacce00bc60f76617c9fb8cfaf88e08a29eb98e95f95b5f5a9127b7242ada93", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7dacce00bc60f76617c9fb8cfaf88e08a29eb98e95f95b5f5a9127b7242ada93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97573, "scanner": "repobility-docker", "fingerprint": "84acca882369fffabd1263791af31b92403239e844d4431fbff7c79607218718", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|84acca882369fffabd1263791af31b92403239e844d4431fbff7c79607218718"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97572, "scanner": "repobility-docker", "fingerprint": "92195e5c6e3a3be9b37bbef4e401e0239707cfbbe5ae03286725342fea322487", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|92195e5c6e3a3be9b37bbef4e401e0239707cfbbe5ae03286725342fea322487"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97569, "scanner": "repobility-docker", "fingerprint": "a14ff95c7704c8c79d34609c8954fba8f22bba6cff5cd303f77a69c1bf6f4e89", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|a14ff95c7704c8c79d34609c8954fba8f22bba6cff5cd303f77a69c1bf6f4e89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97568, "scanner": "repobility-docker", "fingerprint": "e83f7b25ef4fc0e836ae2f8f64d3478b19546f21d01cdee3dda926ebaaad66c7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e83f7b25ef4fc0e836ae2f8f64d3478b19546f21d01cdee3dda926ebaaad66c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97567, "scanner": "repobility-docker", "fingerprint": "a2695e81c51b5b7b1bbe8edcee1d71b5f491624c816c6ef8b86b61598b03fd00", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a2695e81c51b5b7b1bbe8edcee1d71b5f491624c816c6ef8b86b61598b03fd00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97566, "scanner": "repobility-docker", "fingerprint": "06b0218b2b7d074d2974bca70fe41df740bac226bd56b9ce2d81f23885f7af43", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|06b0218b2b7d074d2974bca70fe41df740bac226bd56b9ce2d81f23885f7af43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97563, "scanner": "repobility-docker", "fingerprint": "46898619902dd86c06b5662921a694b0e117aad791d691449c637792786e51d2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|46898619902dd86c06b5662921a694b0e117aad791d691449c637792786e51d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bls-signatures/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97562, "scanner": "repobility-docker", "fingerprint": "c66f29cf7319436687da82a3e842e99414d7f488f54a69e706b50ded48a9ecff", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c66f29cf7319436687da82a3e842e99414d7f488f54a69e706b50ded48a9ecff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bls-signatures/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97559, "scanner": "repobility-docker", "fingerprint": "7db252c079c63cd8c216cd6e96100a494f980311ee204ded38afeb4e12fcf1cd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7db252c079c63cd8c216cd6e96100a494f980311ee204ded38afeb4e12fcf1cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bloaty/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97558, "scanner": "repobility-docker", "fingerprint": "ab494d936c6e35a7544061d44beebf398e2709cc2c96928d5cabef1d273b1f4f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ab494d936c6e35a7544061d44beebf398e2709cc2c96928d5cabef1d273b1f4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bloaty/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97549, "scanner": "repobility-docker", "fingerprint": "736c38eb040319e31acc97d193c963736ad43c6581fe1aed36ef5e618651ad9c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|736c38eb040319e31acc97d193c963736ad43c6581fe1aed36ef5e618651ad9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bitcoin-core/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97548, "scanner": "repobility-docker", "fingerprint": "8044304611cbe1045f3c2cb0d0d8826fd45b587452ee763ef5d1899c2e2734f1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8044304611cbe1045f3c2cb0d0d8826fd45b587452ee763ef5d1899c2e2734f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bitcoin-core/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97545, "scanner": "repobility-docker", "fingerprint": "fff8d5153853693acdadc332eefafba61feea1eb907c1133e1c36cc47d434e07", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|fff8d5153853693acdadc332eefafba61feea1eb907c1133e1c36cc47d434e07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bios-bmc-smm-error-logger/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97544, "scanner": "repobility-docker", "fingerprint": "3c02e0ba609efb6041a69e85e5ce81299677a75de37114835126fa2a5a7163c8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|3c02e0ba609efb6041a69e85e5ce81299677a75de37114835126fa2a5a7163c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bios-bmc-smm-error-logger/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97542, "scanner": "repobility-docker", "fingerprint": "ce229ab9c77e63832cf1bd72ee7c2cf81ae10b130304afc84ca8ff3030d3ca19", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ce229ab9c77e63832cf1bd72ee7c2cf81ae10b130304afc84ca8ff3030d3ca19"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97541, "scanner": "repobility-docker", "fingerprint": "42868b1015d92b5733ae834f14adca30b842e761e037eff19cd06eccf16e34f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|42868b1015d92b5733ae834f14adca30b842e761e037eff19cd06eccf16e34f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97540, "scanner": "repobility-docker", "fingerprint": "c8f998e5da490c6c98246617f8865a19a67a72b4a51ffa4cdfa77252e1e21f6b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c8f998e5da490c6c98246617f8865a19a67a72b4a51ffa4cdfa77252e1e21f6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97537, "scanner": "repobility-docker", "fingerprint": "5a2b7eab343326c9e767f756fc02be066616db0ab4b7b579232e4dcae4d4c31d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5a2b7eab343326c9e767f756fc02be066616db0ab4b7b579232e4dcae4d4c31d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bind9/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97532, "scanner": "repobility-docker", "fingerprint": "d18fb5394fefda0317fed0500c3ede79c9dc73995ade8d825585db8061fd41f1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d18fb5394fefda0317fed0500c3ede79c9dc73995ade8d825585db8061fd41f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97531, "scanner": "repobility-docker", "fingerprint": "62abf7661e57c4b6dc62968c2efcf0a43eac0ccb185d6932b35622adf026bf0b", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|62abf7661e57c4b6dc62968c2efcf0a43eac0ccb185d6932b35622adf026bf0b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97530, "scanner": "repobility-docker", "fingerprint": "1dde03ab2a2cc1aae058a21906a0b8f12b1a5ee749118bbe4e43da9b75da8b81", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|1dde03ab2a2cc1aae058a21906a0b8f12b1a5ee749118bbe4e43da9b75da8b81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97529, "scanner": "repobility-docker", "fingerprint": "b6225c19e0f87a4c8f5c3b9ac89ada4a50217cb12fabc231e952bed55ebe107e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b6225c19e0f87a4c8f5c3b9ac89ada4a50217cb12fabc231e952bed55ebe107e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bignum-fuzzer/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97527, "scanner": "repobility-docker", "fingerprint": "aeaadf7e2c3e8247cd5e149db406643abe0d26b357b94da09de19419d28de43d", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|aeaadf7e2c3e8247cd5e149db406643abe0d26b357b94da09de19419d28de43d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/behaviortreecpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97526, "scanner": "repobility-docker", "fingerprint": "44dd85b53d8822636587fe3c89cd910f8b9d175455b2a7e7cd6bf0a199d93474", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|44dd85b53d8822636587fe3c89cd910f8b9d175455b2a7e7cd6bf0a199d93474"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/behaviortreecpp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97523, "scanner": "repobility-docker", "fingerprint": "5c789d00be1e55b5a116627990dfc92acd12cd2dae9e1cd766f5a11aec031ede", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5c789d00be1e55b5a116627990dfc92acd12cd2dae9e1cd766f5a11aec031ede"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bearssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97522, "scanner": "repobility-docker", "fingerprint": "da74e11417e18523921effa52cd294c343d74cefdbe39aca5e202b0df1b93bf7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|da74e11417e18523921effa52cd294c343d74cefdbe39aca5e202b0df1b93bf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bearssl/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97518, "scanner": "repobility-docker", "fingerprint": "2c1d356de8822b1fe93ad6fc0891c90e0c6cb462baa67aea036bf65c0c2d5ad1", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c1d356de8822b1fe93ad6fc0891c90e0c6cb462baa67aea036bf65c0c2d5ad1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bc-gh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97517, "scanner": "repobility-docker", "fingerprint": "fabe13219caadf623e6cc3939a380190c5cc49dd7c70d9fa49d82fd6469d7071", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fabe13219caadf623e6cc3939a380190c5cc49dd7c70d9fa49d82fd6469d7071"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bc-gh/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97515, "scanner": "repobility-docker", "fingerprint": "c9a63a35de38413bb14afdfbf5c3882e7320e63ce8696e98f19cb0de6aafd79e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9a63a35de38413bb14afdfbf5c3882e7320e63ce8696e98f19cb0de6aafd79e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97514, "scanner": "repobility-docker", "fingerprint": "6525b2ef04bafffeb25fb6da7d657801a1ec59d1666054ed15f318992ca64f89", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6525b2ef04bafffeb25fb6da7d657801a1ec59d1666054ed15f318992ca64f89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test-java/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97511, "scanner": "repobility-docker", "fingerprint": "87ef858efcf5d102c69765761df8c676f359b7197dded6fd04a0d882bc6ac4da", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|87ef858efcf5d102c69765761df8c676f359b7197dded6fd04a0d882bc6ac4da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97510, "scanner": "repobility-docker", "fingerprint": "d7fc74758302d48c40c9c1838bfe730d9084c5b78153a4f88bafa6b8fe9e0842", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d7fc74758302d48c40c9c1838bfe730d9084c5b78153a4f88bafa6b8fe9e0842"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bazel-rules-fuzzing-test/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97507, "scanner": "repobility-docker", "fingerprint": "2559d52e3302f71a7488b56f4e2df8ea9f5e6e916d70cb692ef510bf0f6f6459", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2559d52e3302f71a7488b56f4e2df8ea9f5e6e916d70cb692ef510bf0f6f6459"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bad_example/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97506, "scanner": "repobility-docker", "fingerprint": "5fcf4fdcd13c85f618ae333a2a9a4e786c0ab6db3a2cc4ba7484601b68e03e92", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5fcf4fdcd13c85f618ae333a2a9a4e786c0ab6db3a2cc4ba7484601b68e03e92"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bad_example/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97493, "scanner": "repobility-docker", "fingerprint": "ead5a37ea931b532774fca1b3b2c9179255575dca83d7f0020aa6bce280f85f7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ead5a37ea931b532774fca1b3b2c9179255575dca83d7f0020aa6bce280f85f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/augeas/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97492, "scanner": "repobility-docker", "fingerprint": "9e653724ab60d0b701773574491f977dfc30f6ed112222df213ebf97af5a0506", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9e653724ab60d0b701773574491f977dfc30f6ed112222df213ebf97af5a0506"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/augeas/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97486, "scanner": "repobility-docker", "fingerprint": "2c72d543dd201b7a423709638ff45c02ec6ac4569925100249c84f197bba8bd9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|2c72d543dd201b7a423709638ff45c02ec6ac4569925100249c84f197bba8bd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/async-http-client/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97485, "scanner": "repobility-docker", "fingerprint": "dd03aeb6b00929df39f197e0799a56e3ed0cbe44a685702e8cb55c9f04f34a53", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|dd03aeb6b00929df39f197e0799a56e3ed0cbe44a685702e8cb55c9f04f34a53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/async-http-client/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97475, "scanner": "repobility-docker", "fingerprint": "ea55dbda6c74da220f07f7bf154876e10f19f8c11ef91caeef02b325fd3acab9", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea55dbda6c74da220f07f7bf154876e10f19f8c11ef91caeef02b325fd3acab9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astc-encoder/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97474, "scanner": "repobility-docker", "fingerprint": "04591cc99f2775d4449a68662dc0a8559034c3475ec86363e77452de44923d0d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|04591cc99f2775d4449a68662dc0a8559034c3475ec86363e77452de44923d0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/astc-encoder/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97471, "scanner": "repobility-docker", "fingerprint": "9477643106182504ce51a82a18c04d0d8ec5c575aff71e8ce110dbe5c33babcc", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|9477643106182504ce51a82a18c04d0d8ec5c575aff71e8ce110dbe5c33babcc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/assimp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97470, "scanner": "repobility-docker", "fingerprint": "03400958913921665be9de92406320650336586cf928a9bc991f614cad2043d1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|03400958913921665be9de92406320650336586cf928a9bc991f614cad2043d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/assimp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97464, "scanner": "repobility-docker", "fingerprint": "cfa9a296e167f84f47dcab01f077f5d7b16fe5f45871aea7b8832cf8f9a4d677", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|cfa9a296e167f84f47dcab01f077f5d7b16fe5f45871aea7b8832cf8f9a4d677"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asn1crypto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97463, "scanner": "repobility-docker", "fingerprint": "2cafa9bff4f830c56980df78af215dbe38040bfd318fc04dca3ad4d3e94fed73", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2cafa9bff4f830c56980df78af215dbe38040bfd318fc04dca3ad4d3e94fed73"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asn1crypto/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97460, "scanner": "repobility-docker", "fingerprint": "78ef6fd30e981a33de1a37668a44c62c8e721894c010ddf2fc9ad9aadd817879", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|78ef6fd30e981a33de1a37668a44c62c8e721894c010ddf2fc9ad9aadd817879"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/askama/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97459, "scanner": "repobility-docker", "fingerprint": "88a9c84ee3050174dc869b7f857436cec3209efe6489b48874ac86f6f06e6320", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|88a9c84ee3050174dc869b7f857436cec3209efe6489b48874ac86f6f06e6320"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/askama/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97453, "scanner": "repobility-docker", "fingerprint": "1a5c4e9226216657f3c5c5282d599570d512376a704ff5f354bf244725d2b02d", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1a5c4e9226216657f3c5c5282d599570d512376a704ff5f354bf244725d2b02d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arrow/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97448, "scanner": "repobility-docker", "fingerprint": "6479094523d4e92ed31781addd579bd14ce3db97d83052e5a967bed7b9daafa8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6479094523d4e92ed31781addd579bd14ce3db97d83052e5a967bed7b9daafa8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97447, "scanner": "repobility-docker", "fingerprint": "1734757fb0f44561e3665b2bcb31af9f7f3cf66816012f3ca3bc86cde370457f", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1734757fb0f44561e3665b2bcb31af9f7f3cf66816012f3ca3bc86cde370457f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/args/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97444, "scanner": "repobility-docker", "fingerprint": "a87d71f102ab214428dc4538ff8a49e728b31160418b6b6707a6263b694e4180", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a87d71f102ab214428dc4538ff8a49e728b31160418b6b6707a6263b694e4180"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/argo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97443, "scanner": "repobility-docker", "fingerprint": "8113b319ff1722fd619f637b423a3db0862b8f9166e17b8202ae058ef0395c53", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8113b319ff1722fd619f637b423a3db0862b8f9166e17b8202ae058ef0395c53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/argo/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97439, "scanner": "repobility-docker", "fingerprint": "76f4895320d46a374ecdfae63e991a4e5640769f94ff19c0f70da4961d42409e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|76f4895320d46a374ecdfae63e991a4e5640769f94ff19c0f70da4961d42409e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arduinojson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97438, "scanner": "repobility-docker", "fingerprint": "0c2babe5a2b63554b3eb73cdfcc0414e6016c48f80b17bfe3f9f91be28a0c716", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|0c2babe5a2b63554b3eb73cdfcc0414e6016c48f80b17bfe3f9f91be28a0c716"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/arduinojson/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97434, "scanner": "repobility-docker", "fingerprint": "3beb8b65558295d506865b5b33a9acfb47c031ff18bf22aecdbb3cbd144328c3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3beb8b65558295d506865b5b33a9acfb47c031ff18bf22aecdbb3cbd144328c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aptos-core/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97433, "scanner": "repobility-docker", "fingerprint": "aa5505f45e83dcaee1727a12f4df44bfca1218e1f5fb48ac1df4c02ff61846b8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aa5505f45e83dcaee1727a12f4df44bfca1218e1f5fb48ac1df4c02ff61846b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aptos-core/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97430, "scanner": "repobility-docker", "fingerprint": "c05f5b03dae19a11f1ca47aa558e7eea86d8a214e04513f4e58166b88e768acf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c05f5b03dae19a11f1ca47aa558e7eea86d8a214e04513f4e58166b88e768acf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-poi/Dockerfile"}, "region": {"startLine": 41}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97429, "scanner": "repobility-docker", "fingerprint": "6d1dc1694d58221ba7b15a210d211a2d690750147d8eb78a741262f195998124", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|6d1dc1694d58221ba7b15a210d211a2d690750147d8eb78a741262f195998124"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-poi/Dockerfile"}, "region": {"startLine": 41}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97426, "scanner": "repobility-docker", "fingerprint": "261743b08093ae7f5b5e2023fb65899ddd1910ed19e931da5d74014d60912855", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|261743b08093ae7f5b5e2023fb65899ddd1910ed19e931da5d74014d60912855"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-logging-log4cxx/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97425, "scanner": "repobility-docker", "fingerprint": "e674aa551b3355830fb7f1ecd004ff4d4d2284ff947f8d8572d84dafabf77870", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|e674aa551b3355830fb7f1ecd004ff4d4d2284ff947f8d8572d84dafabf77870"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-logging-log4cxx/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97422, "scanner": "repobility-docker", "fingerprint": "ea67a1408b0a3d81844a74a73d4eb697b94ccba86d586b1abd4d9a571c67f993", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ea67a1408b0a3d81844a74a73d4eb697b94ccba86d586b1abd4d9a571c67f993"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97421, "scanner": "repobility-docker", "fingerprint": "30129648ff0440d3f40f14c5ee441adb7aab47ff1011da310fd47b6c19619cf0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|30129648ff0440d3f40f14c5ee441adb7aab47ff1011da310fd47b6c19619cf0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97419, "scanner": "repobility-docker", "fingerprint": "03f62f5d84af287d6cd83f140bcb4aeca4a5007dc2c8c171cf67c93693695694", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|03f62f5d84af287d6cd83f140bcb4aeca4a5007dc2c8c171cf67c93693695694"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-felix-dev/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97418, "scanner": "repobility-docker", "fingerprint": "ef35aa24285ae2e49c7960247f7c0ff5db04f6a5966459dde1b6e73aaf22455a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|ef35aa24285ae2e49c7960247f7c0ff5db04f6a5966459dde1b6e73aaf22455a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-felix-dev/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97415, "scanner": "repobility-docker", "fingerprint": "727e3657a7c11238de5b3482be0f2651403a720bf9e7c81cb03d205082589545", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|727e3657a7c11238de5b3482be0f2651403a720bf9e7c81cb03d205082589545"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-cxf/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97414, "scanner": "repobility-docker", "fingerprint": "8cb2e7a42e2cd5fa155071f6d79aef686fb6842395bb972085ea0696de060406", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8cb2e7a42e2cd5fa155071f6d79aef686fb6842395bb972085ea0696de060406"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-cxf/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97411, "scanner": "repobility-docker", "fingerprint": "176a23678ca3c4092c2b685b49f36af12f88030214f950d45c0476d167489d0f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|176a23678ca3c4092c2b685b49f36af12f88030214f950d45c0476d167489d0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97410, "scanner": "repobility-docker", "fingerprint": "1c02fe04c93bf25bd07ea20874f09f4c942173ca6c8af004926d6666cd1474bc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1c02fe04c93bf25bd07ea20874f09f4c942173ca6c8af004926d6666cd1474bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-validator/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97405, "scanner": "repobility-docker", "fingerprint": "de5894d13c69abe01caabc82a4c572ba6408f1dd4774a0ce66d3a9eab3d86606", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|de5894d13c69abe01caabc82a4c572ba6408f1dd4774a0ce66d3a9eab3d86606"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-net/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97404, "scanner": "repobility-docker", "fingerprint": "4564307bf4f3833239ace9f0740b895caf17d8be09eae3a9c076e331d83613ad", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|4564307bf4f3833239ace9f0740b895caf17d8be09eae3a9c076e331d83613ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-net/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97372, "scanner": "repobility-docker", "fingerprint": "55946aeae0a434f78f3fe4d3ac6973ed5ea3dfdc9ee6d5a533d94d00ecbd1123", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|55946aeae0a434f78f3fe4d3ac6973ed5ea3dfdc9ee6d5a533d94d00ecbd1123"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-axis2/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97365, "scanner": "repobility-docker", "fingerprint": "3a83099868d4d57bb3646f79528f55080246d8534fc24cdd41cf399070f5e8d3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3a83099868d4d57bb3646f79528f55080246d8534fc24cdd41cf399070f5e8d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ansible/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97364, "scanner": "repobility-docker", "fingerprint": "9196686e61549e58418a3caff94eeac28d10d8c48868dbe989316044e167fcf8", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9196686e61549e58418a3caff94eeac28d10d8c48868dbe989316044e167fcf8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ansible/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97360, "scanner": "repobility-docker", "fingerprint": "79dce59f0e31ec6e6f0114513dc82bc309c3edc9cf47b7a17ef7d9334b2ce5c7", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|79dce59f0e31ec6e6f0114513dc82bc309c3edc9cf47b7a17ef7d9334b2ce5c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/anise/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97353, "scanner": "repobility-docker", "fingerprint": "589fd746b734be931e3616c8db2c887ab41164c4ded3a798c6c47b76c39c89f0", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|589fd746b734be931e3616c8db2c887ab41164c4ded3a798c6c47b76c39c89f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angle/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97350, "scanner": "repobility-docker", "fingerprint": "6a07bbef45870e872a4f6b9dd9e65bbb854f4e52096744d30bce91307905a4f8", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|6a07bbef45870e872a4f6b9dd9e65bbb854f4e52096744d30bce91307905a4f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ampproject/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97349, "scanner": "repobility-docker", "fingerprint": "9c18b9c63f0d1bc01a3b68164b809d4a5bd46de7dd814ec47db9df5baa8da537", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9c18b9c63f0d1bc01a3b68164b809d4a5bd46de7dd814ec47db9df5baa8da537"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ampproject/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97347, "scanner": "repobility-docker", "fingerprint": "a7437ecdb663214139dd8a92e533eb7d5a56d74db321466e4826b978e141cf9f", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a7437ecdb663214139dd8a92e533eb7d5a56d74db321466e4826b978e141cf9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/alembic/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97346, "scanner": "repobility-docker", "fingerprint": "d7eb4cd3f051e337dfb692fef7fbebc50eaff9e7004180c3e8d3ff7663f2e7b1", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d7eb4cd3f051e337dfb692fef7fbebc50eaff9e7004180c3e8d3ff7663f2e7b1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/alembic/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97343, "scanner": "repobility-docker", "fingerprint": "7f010d3cc123ec107a6c5a11070caf2b2bfdec2c9fe9fbef673d52cd6a040e3e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|7f010d3cc123ec107a6c5a11070caf2b2bfdec2c9fe9fbef673d52cd6a040e3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/airflow/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97342, "scanner": "repobility-docker", "fingerprint": "f8dd1941e7acb1705fe8489aaa6cf64d07137d04b7633762ba6419d2e3a6073e", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|f8dd1941e7acb1705fe8489aaa6cf64d07137d04b7633762ba6419d2e3a6073e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/airflow/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97339, "scanner": "repobility-docker", "fingerprint": "90ab947e66afedcf6bdbfd74c247fa0fa949bea8ac46a17e802c0bfc779c110a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|90ab947e66afedcf6bdbfd74c247fa0fa949bea8ac46a17e802c0bfc779c110a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97338, "scanner": "repobility-docker", "fingerprint": "334f8af3b84737eb06bea2b984603a98f7d59d0190ba37536cb358beef8e8baf", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|334f8af3b84737eb06bea2b984603a98f7d59d0190ba37536cb358beef8e8baf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97337, "scanner": "repobility-docker", "fingerprint": "a431fc4e4ed61041c6d7227c51d49faaa04bae718e6d1a135c3f4a05b54ca8f4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a431fc4e4ed61041c6d7227c51d49faaa04bae718e6d1a135c3f4a05b54ca8f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97336, "scanner": "repobility-docker", "fingerprint": "032127f77c0640db7045aa1b83fa9af9ea294d259a29e2aa4dc30d26bc1b7d11", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|032127f77c0640db7045aa1b83fa9af9ea294d259a29e2aa4dc30d26bc1b7d11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/aiohttp/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97331, "scanner": "repobility-docker", "fingerprint": "b800dfc60751bd656477c95e4a76a71942f3330aab77d43161c9e208eb9514fa", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b800dfc60751bd656477c95e4a76a71942f3330aab77d43161c9e208eb9514fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ada-url/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97330, "scanner": "repobility-docker", "fingerprint": "91b9e702b2ad49be12faf489a1ca67a64480b8ffe5ce88d9e9ecd5ac07045c95", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|91b9e702b2ad49be12faf489a1ca67a64480b8ffe5ce88d9e9ecd5ac07045c95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ada-url/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97324, "scanner": "repobility-docker", "fingerprint": "148774eb7e388bba28285e4b8ec30120cb23c1ee5a080798e671a1abc1958398", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|148774eb7e388bba28285e4b8ec30120cb23c1ee5a080798e671a1abc1958398"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/uploader/Dockerfile"}, "region": {"startLine": 4}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97321, "scanner": "repobility-docker", "fingerprint": "35b8ee151a1c48d170efbcd8aad74d6a7c3804349c061819e48dcf933b9e3b72", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|35b8ee151a1c48d170efbcd8aad74d6a7c3804349c061819e48dcf933b9e3b72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/indexer/Dockerfile"}, "region": {"startLine": 7}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97320, "scanner": "repobility-docker", "fingerprint": "38ce6c07776dfe03a7ab52d47310eab253023b17d682d28de44855ac97ba7dd3", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|38ce6c07776dfe03a7ab52d47310eab253023b17d682d28de44855ac97ba7dd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/indexer/Dockerfile"}, "region": {"startLine": 7}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97316, "scanner": "repobility-docker", "fingerprint": "688b11d40a64e1b0721956e5bf57acd681604c633da62a5a9dc07a840264dbc3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|688b11d40a64e1b0721956e5bf57acd681604c633da62a5a9dc07a840264dbc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/chronos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97315, "scanner": "repobility-docker", "fingerprint": "5563553776f7e7e8aeb785e50433afb5ef24ba81f78106081ccfe1dc71417e35", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|5563553776f7e7e8aeb785e50433afb5ef24ba81f78106081ccfe1dc71417e35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/chronos/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97311, "scanner": "repobility-docker", "fingerprint": "16eed38d9ab4bfa6ceb83a2e6432f6851c4fe20254e960ffaea5138a49c93666", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|16eed38d9ab4bfa6ceb83a2e6432f6851c4fe20254e960ffaea5138a49c93666"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/pytorch-lightning-1.5.10/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97310, "scanner": "repobility-docker", "fingerprint": "7f07b095fa511235150399c5f1736c860c600113b6b9ffa487eb31f5787b7d31", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7f07b095fa511235150399c5f1736c860c600113b6b9ffa487eb31f5787b7d31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/pytorch-lightning-1.5.10/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97306, "scanner": "repobility-docker", "fingerprint": "8de5a636f92f0fb85c69838182bb5fc446b33ab5b9ff58902e460f333c3d9ecd", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8de5a636f92f0fb85c69838182bb5fc446b33ab5b9ff58902e460f333c3d9ecd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97305, "scanner": "repobility-docker", "fingerprint": "29a1d16dc5b9530cb51f9772250974ce5b58e030418b83e32bab6be809a725ca", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|29a1d16dc5b9530cb51f9772250974ce5b58e030418b83e32bab6be809a725ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97301, "scanner": "repobility-docker", "fingerprint": "863d619855489934bd0757b809d71a4680c41aa371767aded61431932b00c9e2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|863d619855489934bd0757b809d71a4680c41aa371767aded61431932b00c9e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_data/external-project/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97300, "scanner": "repobility-docker", "fingerprint": "b8b67fbdf27f30326628a0c904b275342aa97bbf891be23a32fc72bd9d6d2cfd", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|b8b67fbdf27f30326628a0c904b275342aa97bbf891be23a32fc72bd9d6d2cfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_data/external-project/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97296, "scanner": "repobility-docker", "fingerprint": "1783756a92a79ddf0f74d6de11cf9b3ca1bdf5c441b77747883ce0edeea7cb67", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|1783756a92a79ddf0f74d6de11cf9b3ca1bdf5c441b77747883ce0edeea7cb67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 33}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97295, "scanner": "repobility-docker", "fingerprint": "d4415b11b59c62232a45065229437cd96f44ce3011028ea861f8d83fe05c946b", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|d4415b11b59c62232a45065229437cd96f44ce3011028ea861f8d83fe05c946b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97294, "scanner": "repobility-docker", "fingerprint": "fce6d824f3d17c7977cdb821de2d55a0eaba7a2646638273c30f41916f8fbbb9", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|fce6d824f3d17c7977cdb821de2d55a0eaba7a2646638273c30f41916f8fbbb9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/cifuzz-base/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97291, "scanner": "repobility-docker", "fingerprint": "2a1341682cfa2cebb122fd2e04cbf1f918b3160162bb647b9d0f298d6466b4fe", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|2a1341682cfa2cebb122fd2e04cbf1f918b3160162bb647b9d0f298d6466b4fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/fuzz-introspector-webapp/Dockerfile"}, "region": {"startLine": 40}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97288, "scanner": "repobility-docker", "fingerprint": "eeeda773756adb148b6f0effe0d10831a46fbfd91474216e79a6d7e98e01faf4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eeeda773756adb148b6f0effe0d10831a46fbfd91474216e79a6d7e98e01faf4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97286, "scanner": "repobility-docker", "fingerprint": "977adcea9bca0525572c38182d9a0d5f660d0c985b90a4b81321cc5001de5ed4", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|977adcea9bca0525572c38182d9a0d5f660d0c985b90a4b81321cc5001de5ed4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97285, "scanner": "repobility-docker", "fingerprint": "d21597ac99cb0089a3f3c13dd353f31e0bc19a73b595d5c1736aee1cc7c64173", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d21597ac99cb0089a3f3c13dd353f31e0bc19a73b595d5c1736aee1cc7c64173"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build/functions/trial_build/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97279, "scanner": "repobility-docker", "fingerprint": "c0c6236b08719db72085518188c01c6e7bcb615a5488467ede9fdf426b33ab48", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c0c6236b08719db72085518188c01c6e7bcb615a5488467ede9fdf426b33ab48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner-debug/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97278, "scanner": "repobility-docker", "fingerprint": "3489104d72f3e75d1ed53756136ebf945769ecfe0830322cfa92648ab31d4df3", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|3489104d72f3e75d1ed53756136ebf945769ecfe0830322cfa92648ab31d4df3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner-debug/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97277, "scanner": "repobility-docker", "fingerprint": "d56339e47c0d972b904b171d28c1a7071f23cb98e019b51e8c669692aa472cb5", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|d56339e47c0d972b904b171d28c1a7071f23cb98e019b51e8c669692aa472cb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner-debug/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97274, "scanner": "repobility-docker", "fingerprint": "bb3a858e12ae9a3c178877f0708ea0f412bfc24d0f787e32d1768335ecd9c02c", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|bb3a858e12ae9a3c178877f0708ea0f412bfc24d0f787e32d1768335ecd9c02c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 120}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97273, "scanner": "repobility-docker", "fingerprint": "9a749cc3eabf49c6572efb0c4ae0597c1b57cad652cde3321742f877fe3adbe7", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9a749cc3eabf49c6572efb0c4ae0597c1b57cad652cde3321742f877fe3adbe7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 120}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97268, "scanner": "repobility-docker", "fingerprint": "8c199717ad61d92b4f3df6a656741aaa7021b6f79e19da6c730e00ac2fa055e6", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|8c199717ad61d92b4f3df6a656741aaa7021b6f79e19da6c730e00ac2fa055e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97267, "scanner": "repobility-docker", "fingerprint": "7ff0bcf193a1393048343d2010e508c607f4e0be0afd399c4e36943192aa3441", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|7ff0bcf193a1393048343d2010e508c607f4e0be0afd399c4e36943192aa3441"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97264, "scanner": "repobility-docker", "fingerprint": "ecc098b46d3ab07e54e30594393b0665a186657aa48a88ee016cbb1c4a915da2", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|ecc098b46d3ab07e54e30594393b0665a186657aa48a88ee016cbb1c4a915da2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-image/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97263, "scanner": "repobility-docker", "fingerprint": "35a77126cf371a02f479d93d4a4ca34bf5905a6e5be7657026e50481f67cd1fa", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|35a77126cf371a02f479d93d4a4ca34bf5905a6e5be7657026e50481f67cd1fa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-image/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97260, "scanner": "repobility-docker", "fingerprint": "07476937b464c82380e19a269ee0db9dda98e262ee02202078569aa653a1b12e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|07476937b464c82380e19a269ee0db9dda98e262ee02202078569aa653a1b12e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-clang/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97259, "scanner": "repobility-docker", "fingerprint": "8ea7a84d9a9faacd709504bd22e6e3e68d62098b41cbb20b97517e3d3029f36a", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|8ea7a84d9a9faacd709504bd22e6e3e68d62098b41cbb20b97517e3d3029f36a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-clang/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97240, "scanner": "repobility-docker", "fingerprint": "0266f4221acf7916426d51ccdc7916a53ee9caf40a25dca6b5bc2fd308680c08", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|0266f4221acf7916426d51ccdc7916a53ee9caf40a25dca6b5bc2fd308680c08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 220}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 97239, "scanner": "repobility-docker", "fingerprint": "9f2eaa6da23e40c052d69239af3c2c86c546109d29580e7d6512ea8038d4d7cc", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|9f2eaa6da23e40c052d69239af3c2c86c546109d29580e7d6512ea8038d4d7cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 220}}}]}, {"ruleId": "DKR012", "level": "note", "message": {"text": "Dockerfile keeps pip download cache"}, "properties": {"repobilityId": 97234, "scanner": "repobility-docker", "fingerprint": "eb1b1956298ce74deb0cb75766c68764d4840e25d751cc637257548fc25b7f7e", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "pip install appears without --no-cache-dir.", "evidence": {"rule_id": "DKR012", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|eb1b1956298ce74deb0cb75766c68764d4840e25d751cc637257548fc25b7f7e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 97233, "scanner": "repobility-docker", "fingerprint": "c9d635f47c66aff791d9aef3de152c8a3cb2cb42d0a70acb4f921c7354984d3a", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|c9d635f47c66aff791d9aef3de152c8a3cb2cb42d0a70acb4f921c7354984d3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "DKR008", "level": "note", "message": {"text": ".dockerignore misses sensitive defaults"}, "properties": {"repobilityId": 97231, "scanner": "repobility-docker", "fingerprint": "aea2ad92c68c4ee1f8432bb1ec25e7d45ac12c9e1790ac2d3fffe638b1acce12", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "A Docker build context should exclude secrets and repository metadata.", "evidence": {"rule_id": "DKR008", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|aea2ad92c68c4ee1f8432bb1ec25e7d45ac12c9e1790ac2d3fffe638b1acce12", "missing_patterns": [".env", "id_rsa", "*.pem", "*.key"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".dockerignore"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC005", "level": "note", "message": {"text": "Duplicate top-level symbol appears in a patch-style file"}, "properties": {"repobilityId": 97226, "scanner": "repobility-ai-code-hygiene", "fingerprint": "90a4553ded8fe2eb72fad446b7f302bf3d6ff630bfbbbf5af765adb396831749", "category": "quality", "severity": "low", "confidence": 0.64, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Patch-style file defines a top-level symbol also defined in another source file.", "evidence": {"symbol": "TestInput", "rule_id": "AIC005", "scanner": "repobility-ai-code-hygiene", "references": ["https://github.com/jendrikseipp/vulture", "https://knip.dev/"], "duplicate_file": "projects/adal/fuzz_util.py", "correlation_key": "fp|90a4553ded8fe2eb72fad446b7f302bf3d6ff630bfbbbf5af765adb396831749"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ftfy/fuzz_fix.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97225, "scanner": "repobility-ai-code-hygiene", "fingerprint": "bd6254fcd917a5895ed860da15fc1b47f975bfbfb73e9e78d9516a9f1465ef8c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_process.py", "duplicate_line": 69, "correlation_key": "fp|bd6254fcd917a5895ed860da15fc1b47f975bfbfb73e9e78d9516a9f1465ef8c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_gcp_actions_validate_process.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97224, "scanner": "repobility-ai-code-hygiene", "fingerprint": "932b361c13db11a31b51133aad9e520c413dec3f4d3bca940b7f4dfc02d53ef0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_process.py", "duplicate_line": 67, "correlation_key": "fp|932b361c13db11a31b51133aad9e520c413dec3f4d3bca940b7f4dfc02d53ef0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_validate.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97223, "scanner": "repobility-ai-code-hygiene", "fingerprint": "08484c78350a184224108b62963e3f377958ebdebdf993be1a2e0eb85a169f8f", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_filters_process.py", "duplicate_line": 31, "correlation_key": "fp|08484c78350a184224108b62963e3f377958ebdebdf993be1a2e0eb85a169f8f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_validate.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97222, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a82d7f8f5f9164d3bf7eaae0131b300def26e47c2bced6607dabf5a321edd3d5", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_parser.py", "duplicate_line": 22, "correlation_key": "fp|a82d7f8f5f9164d3bf7eaae0131b300def26e47c2bced6607dabf5a321edd3d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_validate.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97221, "scanner": "repobility-ai-code-hygiene", "fingerprint": "76ead14d8c3ad9c30b0f902e3a1780730ccba72604980252ab189ba55ade68ed", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_validate.py", "duplicate_line": 11, "correlation_key": "fp|76ead14d8c3ad9c30b0f902e3a1780730ccba72604980252ab189ba55ade68ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_validate.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97220, "scanner": "repobility-ai-code-hygiene", "fingerprint": "e4e5430716cd24ca182253d3e2d6da3a7b3afd3c67ba3545a1f6304105489160", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_parser.py", "duplicate_line": 37, "correlation_key": "fp|e4e5430716cd24ca182253d3e2d6da3a7b3afd3c67ba3545a1f6304105489160"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_process.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97219, "scanner": "repobility-ai-code-hygiene", "fingerprint": "cd34ce7488952e303431e70b5e59ba6f016c9a56d84cf7b07f4cf3b55e68ca57", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_process.py", "duplicate_line": 27, "correlation_key": "fp|cd34ce7488952e303431e70b5e59ba6f016c9a56d84cf7b07f4cf3b55e68ca57"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_process.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97218, "scanner": "repobility-ai-code-hygiene", "fingerprint": "54bd6bb61fe53d3d9bab4a3586a9dac005f6512a703c74d49815f902ff809a67", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_validate.py", "duplicate_line": 11, "correlation_key": "fp|54bd6bb61fe53d3d9bab4a3586a9dac005f6512a703c74d49815f902ff809a67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_process.py"}, "region": {"startLine": 14}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97217, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6e9bc951517974f91dfa2fb6ad06ff5511942fc0bf8b416c3944b58296ccba0c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_parser.py", "duplicate_line": 10, "correlation_key": "fp|6e9bc951517974f91dfa2fb6ad06ff5511942fc0bf8b416c3944b58296ccba0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_filters_parser.py"}, "region": {"startLine": 11}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97216, "scanner": "repobility-ai-code-hygiene", "fingerprint": "fe3e1d2c8ada7a817f4e5a243fd9571c8c1fb687a39b4aa168a34b34207a6b56", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_process.py", "duplicate_line": 30, "correlation_key": "fp|fe3e1d2c8ada7a817f4e5a243fd9571c8c1fb687a39b4aa168a34b34207a6b56"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_actions_validate.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97215, "scanner": "repobility-ai-code-hygiene", "fingerprint": "48ab78fb6e8310185be2639c04e1e73498129952124a7590aa043d5e7ab7460d", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_parser.py", "duplicate_line": 22, "correlation_key": "fp|48ab78fb6e8310185be2639c04e1e73498129952124a7590aa043d5e7ab7460d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_actions_validate.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97214, "scanner": "repobility-ai-code-hygiene", "fingerprint": "40f6da2ff8f7444163d27691cb372d18b4b3da512bc9eab04632262f6f1ccd0c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/cloud-custodian/fuzz_actions_parser.py", "duplicate_line": 10, "correlation_key": "fp|40f6da2ff8f7444163d27691cb372d18b4b3da512bc9eab04632262f6f1ccd0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/fuzz_actions_process.py"}, "region": {"startLine": 13}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97213, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0f8e354aedb59b60aa598a58c063a664ffb9028491b08f4fa400d2061a9c2c49", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/bmcweb/content_type_fuzzer.cpp", "duplicate_line": 1, "correlation_key": "fp|0f8e354aedb59b60aa598a58c063a664ffb9028491b08f4fa400d2061a9c2c49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/json_html_serializer_fuzzer.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97212, "scanner": "repobility-ai-code-hygiene", "fingerprint": "f5a44a1a7086b1551b28f5dccc5826b10e4beb6f944530bd9c8be3ba84359b52", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/bmcweb/content_type_fuzzer.cpp", "duplicate_line": 1, "correlation_key": "fp|f5a44a1a7086b1551b28f5dccc5826b10e4beb6f944530bd9c8be3ba84359b52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bmcweb/filter_expr_fuzzer.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97211, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c8f759a7820d2bb1d29e676bff42657cc08000aeddf6bbd02df9d81425d29eb0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 1, "correlation_key": "fp|c8f759a7820d2bb1d29e676bff42657cc08000aeddf6bbd02df9d81425d29eb0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_strings.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97210, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6f5d3926001e3c4093000d145ca9c2e8e6f490bbcde8a11051734df23a05ee0c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_bfd_ext.c", "duplicate_line": 41, "correlation_key": "fp|6f5d3926001e3c4093000d145ca9c2e8e6f490bbcde8a11051734df23a05ee0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_readelf.c"}, "region": {"startLine": 13}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97209, "scanner": "repobility-ai-code-hygiene", "fingerprint": "55457f9da567a3fd641412f6e1dda4f691ec5c37a9549a2ed6b5fc2c866b32c3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 1, "correlation_key": "fp|55457f9da567a3fd641412f6e1dda4f691ec5c37a9549a2ed6b5fc2c866b32c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_ranlib_simulation.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97208, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ce662da1ed3a87a4c94e051916d06195449ec47a90b907bacac22b8a886de5d2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 10, "correlation_key": "fp|ce662da1ed3a87a4c94e051916d06195449ec47a90b907bacac22b8a886de5d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_objdump.c"}, "region": {"startLine": 24}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97207, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1264418a554354484d1305508d6bbad8c56ca0b63a0156fc4aabc67fa6ad30a2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 11, "correlation_key": "fp|1264418a554354484d1305508d6bbad8c56ca0b63a0156fc4aabc67fa6ad30a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_objcopy.c"}, "region": {"startLine": 78}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97206, "scanner": "repobility-ai-code-hygiene", "fingerprint": "87556f60959ac8c0a8ce51496d020f18c2d05ae96da29554e9d6ae59aeb3feb5", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 1, "correlation_key": "fp|87556f60959ac8c0a8ce51496d020f18c2d05ae96da29554e9d6ae59aeb3feb5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_nm.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97205, "scanner": "repobility-ai-code-hygiene", "fingerprint": "e53d40a8fd1d0e86a061f05f47203c96b0228f8b591732b9cddda715e7acd6c2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_addr2line.c", "duplicate_line": 1, "correlation_key": "fp|e53d40a8fd1d0e86a061f05f47203c96b0228f8b591732b9cddda715e7acd6c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_dwarf.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97204, "scanner": "repobility-ai-code-hygiene", "fingerprint": "def538459f58fedf7351f07534ce009e9a649141d2e0bd6fc1e3ed0040f4d389", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/binutils/fuzz_disas_ext.c", "duplicate_line": 1, "correlation_key": "fp|def538459f58fedf7351f07534ce009e9a649141d2e0bd6fc1e3ed0040f4d389"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_disassemble.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97203, "scanner": "repobility-ai-code-hygiene", "fingerprint": "92830bb03c0a365ee6450018a5a82c46c70ca956ce3e9aa69874c56fe750f1dc", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/apache-httpd/fuzz_uri.c", "duplicate_line": 1, "correlation_key": "fp|92830bb03c0a365ee6450018a5a82c46c70ca956ce3e9aa69874c56fe750f1dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_utils.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97202, "scanner": "repobility-ai-code-hygiene", "fingerprint": "93a5c3abdb1d0539889ffe1b88926f46f3cf06dbe1a63abc3b18751f020c27ee", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/apache-httpd/fuzz_addr_parse.c", "duplicate_line": 1, "correlation_key": "fp|93a5c3abdb1d0539889ffe1b88926f46f3cf06dbe1a63abc3b18751f020c27ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_tokenize.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97201, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a8e7cccfe147d1b184da3f29739b7b168728f55f15e3f475ec84e2fe8e096335", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/apache-commons-io/FileFilterFuzzer.java", "duplicate_line": 16, "correlation_key": "fp|a8e7cccfe147d1b184da3f29739b7b168728f55f15e3f475ec84e2fe8e096335"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-io/WriterFuzzer.java"}, "region": {"startLine": 25}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97200, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0267c0e756b1279e4635c1d7c573c9cfd82be65739c32c8056a295f52c531687", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/apache-commons-configuration/YAMLConfigurationReadFuzzer.java", "duplicate_line": 21, "correlation_key": "fp|0267c0e756b1279e4635c1d7c573c9cfd82be65739c32c8056a295f52c531687"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-configuration/YAMLConfigurationWriteFuzzer.java"}, "region": {"startLine": 23}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97199, "scanner": "repobility-ai-code-hygiene", "fingerprint": "79ecd1575790f8db3d5dcf59573048832eb2b56225a58ef3166c67f73003c20b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "projects/apache-commons-configuration/XMLConfigurationLoadFuzzer.java", "duplicate_line": 9, "correlation_key": "fp|79ecd1575790f8db3d5dcf59573048832eb2b56225a58ef3166c67f73003c20b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-configuration/XMLConfigurationWriteFuzzer.java"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97198, "scanner": "repobility-ai-code-hygiene", "fingerprint": "357f7c82013e9155d706607427277050a9189cda4ddbd26dfb55a01fa8df01a4", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "infra/cifuzz/filestore/filesystem/__init__.py", "duplicate_line": 53, "correlation_key": "fp|357f7c82013e9155d706607427277050a9189cda4ddbd26dfb55a01fa8df01a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/gsutil/__init__.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97197, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a568320429ef50c5169b8c1135c5c5a380a69a04ff557b10695ace07b0fd01e2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "infra/base-images/base-builder-go/ossfuzz_coverage_runner.go", "duplicate_line": 14, "correlation_key": "fp|a568320429ef50c5169b8c1135c5c5a380a69a04ff557b10695ace07b0fd01e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/ossfuzz_coverage_runner.go"}, "region": {"startLine": 17}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 97196, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0de2b44bffc0b0df22d956528832631b8b55e5e1f1565885798c3aa4aaefb400", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "infra/base-images/base-builder/jcc/jcc.go", "duplicate_line": 10, "correlation_key": "fp|0de2b44bffc0b0df22d956528832631b8b55e5e1f1565885798c3aa4aaefb400"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc2.go"}, "region": {"startLine": 144}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 97195, "scanner": "repobility-ai-code-hygiene", "fingerprint": "997631dd1645e1ebfd7c40735b64cb01d0a70d6ab27255c4e63c7fb05de87d3c", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "fix", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|997631dd1645e1ebfd7c40735b64cb01d0a70d6ab27255c4e63c7fb05de87d3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ftfy/fuzz_fix.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 97194, "scanner": "repobility-ai-code-hygiene", "fingerprint": "60f0453a5c055e7beb876496807ec263f9f3900497e039eaccbb7e25ede6d596", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "update", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|60f0453a5c055e7beb876496807ec263f9f3900497e039eaccbb7e25ede6d596"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/profraw_update.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 97178, "scanner": "repobility-threat-engine", "fingerprint": "61a8a4a675e979e07598de09d7511d52057d7bb88bb3d91accc94567ba1af2d2", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "\"JsonString: \" + intJsonStr + \" Expected. Got \"", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|61a8a4a675e979e07598de09d7511d52057d7bb88bb3d91accc94567ba1af2d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsonp-api/CreateJsonFuzzer.java"}, "region": {"startLine": 54}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 97177, "scanner": "repobility-threat-engine", "fingerprint": "b0114cd9741f79cef646c8dcdfbe1a074a926411d48ba9fce7fb45725cd96c27", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "\"org.eclipse.collections.api.collection.primitive.\" + key + \"Collection\"", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|b0114cd9741f79cef646c8dcdfbe1a074a926411d48ba9fce7fb45725cd96c27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatypes-collections/EclipseCollectionsDeserializerFuzzer.java"}, "region": {"startLine": 54}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 97176, "scanner": "repobility-threat-engine", "fingerprint": "3eadca1092980ab3d513c6c4b26fca2b6885bfe00750d9a9c7787c9bdcc90868", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "\"DROP TABLE \" + table + \" IF EXISTS\"", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|3eadca1092980ab3d513c6c4b26fca2b6885bfe00750d9a9c7787c9bdcc90868"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-orm/TestServer.java"}, "region": {"startLine": 31}}}]}, {"ruleId": "SEC124", "level": "note", "message": {"text": "[SEC124] TOCTOU file access (os.access then open): Check-then-use file pattern (access/exists then open) lets an attacker swap the file between check and use (symlink attack). `mktemp` is deprecated for the same reason."}, "properties": {"repobilityId": 97074, "scanner": "repobility-threat-engine", "fingerprint": "c9229174919d56c2ae495e20876b1ade5c0033d5c3f579bec2ed1ac028d503f4", "category": "race_condition", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "os.path.exists(args.output_dir):\n    os.mkdir(args.output_dir)\n  testcase = os.path.join(args.output", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC124", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|c9229174919d56c2ae495e20876b1ade5c0033d5c3f579bec2ed1ac028d503f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/tools/wycheproof/run.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "SEC124", "level": "note", "message": {"text": "[SEC124] TOCTOU file access (os.access then open): Check-then-use file pattern (access/exists then open) lets an attacker swap the file between check and use (symlink attack). `mktemp` is deprecated for the same reason."}, "properties": {"repobilityId": 97073, "scanner": "repobility-threat-engine", "fingerprint": "02dd0d4d53f7a4c9d502e9d32219a7cfae744c9b3e581c432a585667222e6163", "category": "race_condition", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "os.access(abs_file, os.X_OK):\n\n        # Ensure it's an ELF\n        with open(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC124", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|02dd0d4d53f7a4c9d502e9d32219a7cfae744c9b3e581c432a585667222e6163"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/coverage_test_collection.py"}, "region": {"startLine": 50}}}]}, {"ruleId": "SEC124", "level": "note", "message": {"text": "[SEC124] TOCTOU file access (os.access then open): Check-then-use file pattern (access/exists then open) lets an attacker swap the file between check and use (symlink attack). `mktemp` is deprecated for the same reason."}, "properties": {"repobilityId": 97072, "scanner": "repobility-threat-engine", "fingerprint": "5c29179657e410d4e570a316d75b933d9e3ba92b96d2130413239fb3e844aed0", "category": "race_condition", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "os.path.exists(src):\n      shutil.move(src, src + _REAL_SUFFIX)\n\n  # Create a shell wrapper that stu", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC124", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|5c29179657e410d4e570a316d75b933d9e3ba92b96d2130413239fb3e844aed0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/make_build_replayable.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `get_dirs_to_search` has cognitive complexity 10 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: for=2, if=2, nested_bonus=6."}, "properties": {"repobilityId": 97053, "scanner": "repobility-threat-engine", "fingerprint": "be6a806f7293550f38c424e06c04757624d8601db8c4327bebf8f90337978931", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 10 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "get_dirs_to_search", "breakdown": {"if": 2, "for": 2, "nested_bonus": 6}, "complexity": 10, "correlation_key": "fp|be6a806f7293550f38c424e06c04757624d8601db8c4327bebf8f90337978931"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/detect_repo.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 11 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: continue=1, else=1, for=1, if=5, nested_bonus=3."}, "properties": {"repobilityId": 97052, "scanner": "repobility-threat-engine", "fingerprint": "9c0355ae5bf1375049f091a7ac8daef966ad56e1d8685799543aa81ca6128acc", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 11 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 5, "for": 1, "else": 1, "continue": 1, "nested_bonus": 3}, "complexity": 11, "correlation_key": "fp|9c0355ae5bf1375049f091a7ac8daef966ad56e1d8685799543aa81ca6128acc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/detect_repo.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "ERR003", "level": "note", "message": {"text": "[ERR003] Ignored Error (Go): Ignoring error return values."}, "properties": {"repobilityId": 97050, "scanner": "repobility-threat-engine", "fingerprint": "70d9d03cc18ae5a50373078ecd0b10c7bfcd7c0e805eff2eb3ef201f0e06b422", "category": "error_handling", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "_ = pprof.StartCPUProfile(", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR003", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|70d9d03cc18ae5a50373078ecd0b10c7bfcd7c0e805eff2eb3ef201f0e06b422"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/ossfuzz_coverage_runner.go"}, "region": {"startLine": 47}}}]}, {"ruleId": "ERR003", "level": "note", "message": {"text": "[ERR003] Ignored Error (Go): Ignoring error return values."}, "properties": {"repobilityId": 97049, "scanner": "repobility-threat-engine", "fingerprint": "fc9ab6a26b1c3cb8fe22028017ddf0ea660a86e41f615b2dda18430d23e38122", "category": "error_handling", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "_ = filepath.Abs(", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR003", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|fc9ab6a26b1c3cb8fe22028017ddf0ea660a86e41f615b2dda18430d23e38122"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc2.go"}, "region": {"startLine": 219}}}]}, {"ruleId": "ERR003", "level": "note", "message": {"text": "[ERR003] Ignored Error (Go): Ignoring error return values."}, "properties": {"repobilityId": 97048, "scanner": "repobility-threat-engine", "fingerprint": "d0321e5e98dfe4d0d5ed9f1aa2fb1c5c9129b8eb5ce6e1e9f427f361839a4428", "category": "error_handling", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "_ = pprof.StartCPUProfile(", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR003", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d0321e5e98dfe4d0d5ed9f1aa2fb1c5c9129b8eb5ce6e1e9f427f361839a4428"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-go/ossfuzz_coverage_runner.go"}, "region": {"startLine": 44}}}]}, {"ruleId": "DKR002", "level": "none", "message": {"text": "Dockerfile base image is selected through a build variable"}, "properties": {"repobilityId": 97262, "scanner": "repobility-docker", "fingerprint": "3ad9f12f4183685759a0868b90c92043f55882dbd41e294bcd18c74af0994116", "category": "docker", "severity": "info", "confidence": 0.48, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Base image contains a variable; manual review is needed to avoid false positives.", "evidence": {"image": "$parent_image", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/"], "correlation_key": "fp|3ad9f12f4183685759a0868b90c92043f55882dbd41e294bcd18c74af0994116"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-image/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "SEC102", "level": "none", "message": {"text": "[SEC102] Jackson default typing / polymorphic deserialization enabled (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97184, "scanner": "repobility-threat-engine", "fingerprint": "c78b1159bb1dc85563640f1224a0c9a331396cc3a26b8d675309b53fb1cc3a23", "category": "deserialization", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC102", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|c78b1159bb1dc85563640f1224a0c9a331396cc3a26b8d675309b53fb1cc3a23"}}}, {"ruleId": "MINED069", "level": "none", "message": {"text": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files."}, "properties": {"repobilityId": 97180, "scanner": "repobility-threat-engine", "fingerprint": "8334f017e2fbd27d2b8de2eb7324c06399a1ee10458088fba4885d69f8b61fec", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "debug-true-prod", "owasp": "A05:2021", "cwe_ids": ["CWE-489"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348063+00:00", "triaged_in_corpus": 12, "observations_count": 37393, "ai_coder_pattern_id": 17}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8334f017e2fbd27d2b8de2eb7324c06399a1ee10458088fba4885d69f8b61fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hsqldb/build.sh"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED060", "level": "none", "message": {"text": "[MINED060] Go Context No Cancel: context.Background() at request handler boundary leaks goroutines."}, "properties": {"repobilityId": 97173, "scanner": "repobility-threat-engine", "fingerprint": "beee8f10b2cecae8a56db4f2ddbfabdf67a715d11cee7525ab3cad1fcc47ea2a", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-context-no-cancel", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348041+00:00", "triaged_in_corpus": 12, "observations_count": 132905, "ai_coder_pattern_id": 110}, "scanner": "repobility-threat-engine", "correlation_key": "fp|beee8f10b2cecae8a56db4f2ddbfabdf67a715d11cee7525ab3cad1fcc47ea2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/moby/daemon_fuzzer.go"}, "region": {"startLine": 124}}}]}, {"ruleId": "MINED060", "level": "none", "message": {"text": "[MINED060] Go Context No Cancel: context.Background() at request handler boundary leaks goroutines."}, "properties": {"repobilityId": 97172, "scanner": "repobility-threat-engine", "fingerprint": "465d85d3058eed1e49cd0f4ad4f85f291bb183b3ef0acd73f28a344bb399fef9", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-context-no-cancel", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348041+00:00", "triaged_in_corpus": 12, "observations_count": 132905, "ai_coder_pattern_id": 110}, "scanner": "repobility-threat-engine", "correlation_key": "fp|465d85d3058eed1e49cd0f4ad4f85f291bb183b3ef0acd73f28a344bb399fef9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/grpc-go/fuzz_hello.go"}, "region": {"startLine": 97}}}]}, {"ruleId": "MINED060", "level": "none", "message": {"text": "[MINED060] Go Context No Cancel: context.Background() at request handler boundary leaks goroutines."}, "properties": {"repobilityId": 97171, "scanner": "repobility-threat-engine", "fingerprint": "c13004edd88113713ca037d029a83302649c350d6ecf3226f6823e94d1829d0c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-context-no-cancel", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348041+00:00", "triaged_in_corpus": 12, "observations_count": 132905, "ai_coder_pattern_id": 110}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c13004edd88113713ca037d029a83302649c350d6ecf3226f6823e94d1829d0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang/h2c_fuzzer.go"}, "region": {"startLine": 96}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "properties": {"repobilityId": 97165, "scanner": "repobility-threat-engine", "fingerprint": "d50e49004c43dc92edfa10925fa20f2f96c4146af9b9ed26ac82725af33dc3fb", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|d50e49004c43dc92edfa10925fa20f2f96c4146af9b9ed26ac82725af33dc3fb", "aggregated_count": 3}}}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 97164, "scanner": "repobility-threat-engine", "fingerprint": "d34c8bff5b619275f2fda178fe6c20f396d444c9df85cdb5bc518eb53123ce87", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d34c8bff5b619275f2fda178fe6c20f396d444c9df85cdb5bc518eb53123ce87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/file/magic_fuzzer.cc"}, "region": {"startLine": 44}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 97163, "scanner": "repobility-threat-engine", "fingerprint": "a8e81239d30abe1a971175f1d011edbce7c7db26dbb5d438b0da01d21aa514ab", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|a8e81239d30abe1a971175f1d011edbce7c7db26dbb5d438b0da01d21aa514ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/dng_stage_fuzzer.cpp"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 97162, "scanner": "repobility-threat-engine", "fingerprint": "42c764db361ffe94087eace6c20cfc49b163ca22f16fc82112c9db915636638d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|42c764db361ffe94087eace6c20cfc49b163ca22f16fc82112c9db915636638d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dng_sdk/dng_camera_profile_fuzzer.cpp"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 97160, "scanner": "repobility-threat-engine", "fingerprint": "7872efa1d5d7ecaac27d7ef49323b8456a1b0d17834fc20de003e2e931df3d38", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7872efa1d5d7ecaac27d7ef49323b8456a1b0d17834fc20de003e2e931df3d38"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bs4/bs4_fuzzer.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "properties": {"repobilityId": 97159, "scanner": "repobility-threat-engine", "fingerprint": "c500bee8cee38d54927fc282c53282f90591d224c1d237f1e22a2e924fa7d105", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 6 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|c500bee8cee38d54927fc282c53282f90591d224c1d237f1e22a2e924fa7d105", "aggregated_count": 6}}}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 97158, "scanner": "repobility-threat-engine", "fingerprint": "cd270a2dd3cddc8c92334a134cbd88bd1dc085957fcd08efa851e371d5cad6d6", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cd270a2dd3cddc8c92334a134cbd88bd1dc085957fcd08efa851e371d5cad6d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/ProtoToGif.cpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 97157, "scanner": "repobility-threat-engine", "fingerprint": "a320993c5d035028a86f4c9719256a4eca4c97adf96935fd1004f40a78b0e743", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|a320993c5d035028a86f4c9719256a4eca4c97adf96935fd1004f40a78b0e743"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/boost_uuid_fuzzer.cc"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 97156, "scanner": "repobility-threat-engine", "fingerprint": "f49ab99ed67e50a0eb28481db4d46b784a74f206b95dcd49c0b4bdf47a42b805", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f49ab99ed67e50a0eb28481db4d46b784a74f206b95dcd49c0b4bdf47a42b805"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/boost/boost_programoptions_fuzzer.cc"}, "region": {"startLine": 19}}}]}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97155, "scanner": "repobility-threat-engine", "fingerprint": "c59edcd8286991ab7caac4493f8f01b268fef2a5d218265ad20f6e2d1172fefb", "category": "injection", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|c59edcd8286991ab7caac4493f8f01b268fef2a5d218265ad20f6e2d1172fefb"}}}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 97154, "scanner": "repobility-threat-engine", "fingerprint": "77119a4aa31611af81ae5fad4c2be3d395dabda12693d5bed584f968b1d8311e", "category": "injection", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern '\\.eval\\(' detected on same line", "evidence": {"match": ".eval(", "reason": "Safe pattern '\\.eval\\(' detected on same line", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|injection|token|118|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/eigen/basicstuff_fuzzer.cc"}, "region": {"startLine": 118}}}]}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 97153, "scanner": "repobility-threat-engine", "fingerprint": "a8b3a156beaa52114e77ef9c8f8435c0ecc33f6a6d5abd6ec5c4611b5f96db62", "category": "injection", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern '\\.eval\\(' detected on same line", "evidence": {"match": ".Eval(", "reason": "Safe pattern '\\.eval\\(' detected on same line", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|injection|token|41|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/fuzz_eval.go"}, "region": {"startLine": 41}}}]}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 97152, "scanner": "repobility-threat-engine", "fingerprint": "960faa3fa8d8aac8388cee925cf447af7f001713c5d40bb1ed11e5631fed7a67", "category": "injection", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern '\\.eval\\(' detected on same line", "evidence": {"match": ".eval(", "reason": "Safe pattern '\\.eval\\(' detected on same line", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|injection|token|31|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/asteval/fuzz_eval.py"}, "region": {"startLine": 31}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check (and 18 more): Same pattern found in 18 additional files. Review if needed."}, "properties": {"repobilityId": 97151, "scanner": "repobility-threat-engine", "fingerprint": "74fa7f15c837c8ec8ccc2559da38299ea7bed2f7103f03bbca4e4c556094a5c1", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 18 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|74fa7f15c837c8ec8ccc2559da38299ea7bed2f7103f03bbca4e4c556094a5c1", "aggregated_count": 18}}}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 97150, "scanner": "repobility-threat-engine", "fingerprint": "e01f6ea6e0ee90ef8ea256dbd13916bdd7e4f68f21714256425feb2bbbef715b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|e01f6ea6e0ee90ef8ea256dbd13916bdd7e4f68f21714256425feb2bbbef715b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bluez/fuzz_hci.c"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 97149, "scanner": "repobility-threat-engine", "fingerprint": "b076547798a5b88bc0bef3a5dc1e0dbde2d011132b6673d781e540e3bd6771ff", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b076547798a5b88bc0bef3a5dc1e0dbde2d011132b6673d781e540e3bd6771ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_utils.c"}, "region": {"startLine": 93}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 97148, "scanner": "repobility-threat-engine", "fingerprint": "37e26428d3e2e7fdbc3b0089ce339bc3c514089754189a69534339189b43da2d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|37e26428d3e2e7fdbc3b0089ce339bc3c514089754189a69534339189b43da2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_request.c"}, "region": {"startLine": 103}}}]}, {"ruleId": "SEC024", "level": "none", "message": {"text": "[SEC024] XML External Entity (XXE) \u2014 Java parser default (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97145, "scanner": "repobility-threat-engine", "fingerprint": "65c7efc380d7289c4ccf2845ebe55a22f6b35f73efe9ab03bdf50da756a05703", "category": "xxe", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC024", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|65c7efc380d7289c4ccf2845ebe55a22f6b35f73efe9ab03bdf50da756a05703"}}}, {"ruleId": "MINED081", "level": "none", "message": {"text": "[MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr."}, "properties": {"repobilityId": 97141, "scanner": "repobility-threat-engine", "fingerprint": "8887e1827b00224fa2bed1ac1d2fe4269b29da167743bf35413fd3df4539b66b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "java-printstacktrace", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["java"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348125+00:00", "triaged_in_corpus": 12, "observations_count": 2934, "ai_coder_pattern_id": 126}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8887e1827b00224fa2bed1ac1d2fe4269b29da167743bf35413fd3df4539b66b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-orm/SessionFactoryBuilder.java"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED081", "level": "none", "message": {"text": "[MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr."}, "properties": {"repobilityId": 97140, "scanner": "repobility-threat-engine", "fingerprint": "99a7671836bad5d3926de0fb012f944660fe491e7ade4033e6a860b6469c8bf1", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "java-printstacktrace", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["java"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348125+00:00", "triaged_in_corpus": 12, "observations_count": 2934, "ai_coder_pattern_id": 126}, "scanner": "repobility-threat-engine", "correlation_key": "fp|99a7671836bad5d3926de0fb012f944660fe491e7ade4033e6a860b6469c8bf1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-tika/project-parent/fuzz-targets/src/main/java/com/example/XMLReaderUtilsFuzzer.java"}, "region": {"startLine": 53}}}]}, {"ruleId": "MINED081", "level": "none", "message": {"text": "[MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr."}, "properties": {"repobilityId": 97139, "scanner": "repobility-threat-engine", "fingerprint": "928cbe90409551cbfe3aed1ea08eb1b24ea7d67de632bf8efb42aa474d0baf04", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "java-printstacktrace", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["java"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348125+00:00", "triaged_in_corpus": 12, "observations_count": 2934, "ai_coder_pattern_id": 126}, "scanner": "repobility-threat-engine", "correlation_key": "fp|928cbe90409551cbfe3aed1ea08eb1b24ea7d67de632bf8efb42aa474d0baf04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-axis2/axis-axis2-java-core-fuzzer/src/main/java/org/apache/axis2/HttpInterfaceFuzzer.java"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED004", "level": "none", "message": {"text": "[MINED004] Weak Crypto (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "properties": {"repobilityId": 97138, "scanner": "repobility-threat-engine", "fingerprint": "eb7059bff231de58d9f065283f042893233310adbb37c8e2332fb96e5a000897", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 6 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|eb7059bff231de58d9f065283f042893233310adbb37c8e2332fb96e5a000897", "aggregated_count": 6}}}, {"ruleId": "SEC128", "level": "none", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 19 more): Same pattern found in 19 additional files. Review if needed."}, "properties": {"repobilityId": 97131, "scanner": "repobility-threat-engine", "fingerprint": "bd54825b370df96cfa928aef9dad2eaa620fcffcb67884d1a0ca6a60cfaa3cb7", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 19 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 19 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|bd54825b370df96cfa928aef9dad2eaa620fcffcb67884d1a0ca6a60cfaa3cb7"}}}, {"ruleId": "MINED022", "level": "none", "message": {"text": "[MINED022] C Strcpy (and 38 more): Same pattern found in 38 additional files. Review if needed."}, "properties": {"repobilityId": 97127, "scanner": "repobility-threat-engine", "fingerprint": "faccbed4caf58dd6a99c3bd6f7233b2d95dccec01ad02fc9fa5332b6c38e528d", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 38 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|faccbed4caf58dd6a99c3bd6f7233b2d95dccec01ad02fc9fa5332b6c38e528d", "aggregated_count": 38}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https (and 142 more): Same pattern found in 142 additional files. Review if needed."}, "properties": {"repobilityId": 97121, "scanner": "repobility-threat-engine", "fingerprint": "3c5eca6ffd5008f2e2714bdce1ef3d8085b6e965b23ff41559c9004e3b62450a", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 142 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|3c5eca6ffd5008f2e2714bdce1ef3d8085b6e965b23ff41559c9004e3b62450a", "aggregated_count": 142}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 97120, "scanner": "repobility-threat-engine", "fingerprint": "564755f170dc41a3c7a91ab64486b7f12c906a9f5a9e2211a9efa04c0bb218c8", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|564755f170dc41a3c7a91ab64486b7f12c906a9f5a9e2211a9efa04c0bb218c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_addr_parse.c"}, "region": {"startLine": 5}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 97119, "scanner": "repobility-threat-engine", "fingerprint": "dccc8c625b35f5aeb792f1d2e13445a11fdc8ab1501dbe450f6f052bd845c6ff", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dccc8c625b35f5aeb792f1d2e13445a11fdc8ab1501dbe450f6f052bd845c6ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-axis2/axis-axis2-java-core-fuzzer/src/main/java/org/apache/axis2/HttpInterfaceFuzzer.java"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 97118, "scanner": "repobility-threat-engine", "fingerprint": "2c054584b67021bebb60e21ba874e20e2e14fe9cff3d323eee77a05e62fd0190", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2c054584b67021bebb60e21ba874e20e2e14fe9cff3d323eee77a05e62fd0190"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/sarif_utils.py"}, "region": {"startLine": 134}}}]}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "properties": {"repobilityId": 97116, "scanner": "repobility-threat-engine", "fingerprint": "1dc730df6eb21b01e8f96783a4c036572df894ab8e725ffbbf96d392d4b68b2f", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "correlation_key": "fp|1dc730df6eb21b01e8f96783a4c036572df894ab8e725ffbbf96d392d4b68b2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/github_actions/upload.js"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED067", "level": "none", "message": {"text": "[MINED067] Python Requests No Timeout (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 97115, "scanner": "repobility-threat-engine", "fingerprint": "1361ffa9c3e6bba8c756f3d556d7d430ee765c8d57ea666109adf6c3be4e2cb1", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "python-requests-no-timeout", "owasp": null, "cwe_ids": ["CWE-400"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348058+00:00", "triaged_in_corpus": 12, "observations_count": 45429, "ai_coder_pattern_id": 122}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|1361ffa9c3e6bba8c756f3d556d7d430ee765c8d57ea666109adf6c3be4e2cb1", "aggregated_count": 2}}}, {"ruleId": "MINED067", "level": "none", "message": {"text": "[MINED067] Python Requests No Timeout: requests.get/post/etc. without timeout= can hang forever."}, "properties": {"repobilityId": 97114, "scanner": "repobility-threat-engine", "fingerprint": "6cf21b8a7242ad67edf673efc06190297cea7199b045b028a99ceee5365f185c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-requests-no-timeout", "owasp": null, "cwe_ids": ["CWE-400"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348058+00:00", "triaged_in_corpus": 12, "observations_count": 45429, "ai_coder_pattern_id": 122}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6cf21b8a7242ad67edf673efc06190297cea7199b045b028a99ceee5365f185c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/pr_helper.py"}, "region": {"startLine": 192}}}]}, {"ruleId": "MINED067", "level": "none", "message": {"text": "[MINED067] Python Requests No Timeout: requests.get/post/etc. without timeout= can hang forever."}, "properties": {"repobilityId": 97113, "scanner": "repobility-threat-engine", "fingerprint": "1b4576b712d14514c443f09514a4d2e7e770f1f7cb7275b40efc12ccd02ca338", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-requests-no-timeout", "owasp": null, "cwe_ids": ["CWE-400"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348058+00:00", "triaged_in_corpus": 12, "observations_count": 45429, "ai_coder_pattern_id": 122}, "scanner": "repobility-threat-engine", "correlation_key": "fp|1b4576b712d14514c443f09514a4d2e7e770f1f7cb7275b40efc12ccd02ca338"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/http_utils.py"}, "region": {"startLine": 86}}}]}, {"ruleId": "MINED067", "level": "none", "message": {"text": "[MINED067] Python Requests No Timeout: requests.get/post/etc. without timeout= can hang forever."}, "properties": {"repobilityId": 97112, "scanner": "repobility-threat-engine", "fingerprint": "4f5b988e70392fcf99089549463fd11e99a7d41a230422a63e80293e97c6c8c8", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-requests-no-timeout", "owasp": null, "cwe_ids": ["CWE-400"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348058+00:00", "triaged_in_corpus": 12, "observations_count": 45429, "ai_coder_pattern_id": 122}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4f5b988e70392fcf99089549463fd11e99a7d41a230422a63e80293e97c6c8c8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/github_actions/github_api.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "SEC078", "level": "none", "message": {"text": "[SEC078] Python: requests without timeout (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 97111, "scanner": "repobility-threat-engine", "fingerprint": "130c5045baecd0b9524abd6870aed08fddb81812daa325ac97b261216d6966ee", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC078", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|130c5045baecd0b9524abd6870aed08fddb81812daa325ac97b261216d6966ee"}}}, {"ruleId": "SEC029", "level": "none", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "properties": {"repobilityId": 97107, "scanner": "repobility-threat-engine", "fingerprint": "67207f5a6f091578506eace9ca6ffadd0a3f381d921b44ecf0b5e41c235e25c5", "category": "ssrf", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|67207f5a6f091578506eace9ca6ffadd0a3f381d921b44ecf0b5e41c235e25c5"}}}, {"ruleId": "MINED063", "level": "none", "message": {"text": "[MINED063] Toctou Os Path Exists: if os.path.exists(p): open(p) \u2014 file can be replaced/deleted between check and use."}, "properties": {"repobilityId": 97103, "scanner": "repobility-threat-engine", "fingerprint": "b85facac8ff173da8f78d5d8a41d6b8031b00f3a69bf58b0859aa840a5535d20", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "toctou-os-path-exists", "owasp": null, "cwe_ids": ["CWE-367"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348048+00:00", "triaged_in_corpus": 12, "observations_count": 90754, "ai_coder_pattern_id": 41}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b85facac8ff173da8f78d5d8a41d6b8031b00f3a69bf58b0859aa840a5535d20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/ci/check_base_os.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "properties": {"repobilityId": 97102, "scanner": "repobility-threat-engine", "fingerprint": "1bfef384604eb4bf0dde71c7286316ee926f4f2b9bdef9aeec726c9f674c0a9d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "correlation_key": "fp|1bfef384604eb4bf0dde71c7286316ee926f4f2b9bdef9aeec726c9f674c0a9d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/integrity_validator_run_tests.py"}, "region": {"startLine": 184}}}]}, {"ruleId": "MINED077", "level": "none", "message": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "properties": {"repobilityId": 97099, "scanner": "repobility-threat-engine", "fingerprint": "cf72056d1c2e0f7151dad619f4e5c5b5278bf622a33feb9dabe157c77d3a40a2", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-open-no-context", "owasp": null, "cwe_ids": ["CWE-772"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348081+00:00", "triaged_in_corpus": 12, "observations_count": 7864, "ai_coder_pattern_id": 123}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cf72056d1c2e0f7151dad619f4e5c5b5278bf622a33feb9dabe157c77d3a40a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ftfy/fuzz_fix.py"}, "region": {"startLine": 29}}}]}, {"ruleId": "MINED077", "level": "none", "message": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "properties": {"repobilityId": 97098, "scanner": "repobility-threat-engine", "fingerprint": "2829997e00f71a3560653100760a880fab1901fa6e1f6c099f058c2503d32d11", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-open-no-context", "owasp": null, "cwe_ids": ["CWE-772"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348081+00:00", "triaged_in_corpus": 12, "observations_count": 7864, "ai_coder_pattern_id": 123}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2829997e00f71a3560653100760a880fab1901fa6e1f6c099f058c2503d32d11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/coverage_test_collection.py"}, "region": {"startLine": 111}}}]}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 97095, "scanner": "repobility-threat-engine", "fingerprint": "7142c8b95e6670df23377ca647e6bdd8b04f7723e9ddc4fff53aab2e5feb015a", "category": "credential_exposure", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe context pattern detected", "evidence": {"match": "print(image_config.get('name', '')", "reason": "Safe context pattern detected", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "secret|token|3|print image_config.get name"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/list_images.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "SEC013", "level": "none", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97094, "scanner": "repobility-threat-engine", "fingerprint": "75f22750f5eefefb3a3ce8f933bc32c82dff4c8e9ca3ec94aeac313553cfbd0d", "category": "path_traversal", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|75f22750f5eefefb3a3ce8f933bc32c82dff4c8e9ca3ec94aeac313553cfbd0d"}}}, {"ruleId": "MINED055", "level": "none", "message": {"text": "[MINED055] Npm Install No Lockfile (and 11 more): Same pattern found in 11 additional files. Review if needed."}, "properties": {"repobilityId": 97090, "scanner": "repobility-threat-engine", "fingerprint": "e395d7d9ea5ccb42b5c8f283f1acc70de6692e316308c8d5c178327e197f8363", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 11 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "npm-install-no-lockfile", "owasp": "A06:2021", "cwe_ids": ["CWE-1357"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348030+00:00", "triaged_in_corpus": 12, "observations_count": 317602, "ai_coder_pattern_id": 42}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|e395d7d9ea5ccb42b5c8f283f1acc70de6692e316308c8d5c178327e197f8363", "aggregated_count": 11}}}, {"ruleId": "MINED055", "level": "none", "message": {"text": "[MINED055] Npm Install No Lockfile: Production image runs npm install (resolves new versions on every build) instead of npm ci."}, "properties": {"repobilityId": 97089, "scanner": "repobility-threat-engine", "fingerprint": "0451bf3088b2311e6466d4d4f3abe787a30d8ba8d3b7bd85d02a27f91e1eeaba", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "npm-install-no-lockfile", "owasp": "A06:2021", "cwe_ids": ["CWE-1357"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348030+00:00", "triaged_in_corpus": 12, "observations_count": 317602, "ai_coder_pattern_id": 42}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0451bf3088b2311e6466d4d4f3abe787a30d8ba8d3b7bd85d02a27f91e1eeaba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/build.sh"}, "region": {"startLine": 104}}}]}, {"ruleId": "MINED055", "level": "none", "message": {"text": "[MINED055] Npm Install No Lockfile: Production image runs npm install (resolves new versions on every build) instead of npm ci."}, "properties": {"repobilityId": 97088, "scanner": "repobility-threat-engine", "fingerprint": "ff6526eb3b5f7b6266f458bc0346a9ef47c3358111d6932751a7ad3940385ff0", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "npm-install-no-lockfile", "owasp": "A06:2021", "cwe_ids": ["CWE-1357"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348030+00:00", "triaged_in_corpus": 12, "observations_count": 317602, "ai_coder_pattern_id": 42}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ff6526eb3b5f7b6266f458bc0346a9ef47c3358111d6932751a7ad3940385ff0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/build.sh"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED055", "level": "none", "message": {"text": "[MINED055] Npm Install No Lockfile: Production image runs npm install (resolves new versions on every build) instead of npm ci."}, "properties": {"repobilityId": 97087, "scanner": "repobility-threat-engine", "fingerprint": "81c26233d802ea997a3efe89102fce421b27c8d85040ef2d21b06c60d7e3b3e7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "npm-install-no-lockfile", "owasp": "A06:2021", "cwe_ids": ["CWE-1357"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348030+00:00", "triaged_in_corpus": 12, "observations_count": 317602, "ai_coder_pattern_id": 42}, "scanner": "repobility-threat-engine", "correlation_key": "fp|81c26233d802ea997a3efe89102fce421b27c8d85040ef2d21b06c60d7e3b3e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/install_javascript.sh"}, "region": {"startLine": 30}}}]}, {"ruleId": "ERR001", "level": "none", "message": {"text": "[ERR001] Silent Exception Swallowing (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "properties": {"repobilityId": 97086, "scanner": "repobility-threat-engine", "fingerprint": "8a4bd872da419130753367ef5a61efa729f221dd8f26dbedd7003551d50a5f41", "category": "error_handling", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|8a4bd872da419130753367ef5a61efa729f221dd8f26dbedd7003551d50a5f41"}}}, {"ruleId": "MINED001", "level": "none", "message": {"text": "[MINED001] Bare Except Pass (and 96 more): Same pattern found in 96 additional files. Review if needed."}, "properties": {"repobilityId": 97082, "scanner": "repobility-threat-engine", "fingerprint": "f1a311985b9f05301003c1db69cbeee129bf0d15016be2b7e6a333242dd1799b", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 96 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|f1a311985b9f05301003c1db69cbeee129bf0d15016be2b7e6a333242dd1799b", "aggregated_count": 96}}}, {"ruleId": "SEC124", "level": "none", "message": {"text": "[SEC124] TOCTOU file access (os.access then open) (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97075, "scanner": "repobility-threat-engine", "fingerprint": "57b4205141bd2c5f0b1855c4b91b58bcfa41e1d53a3e9574c696aaf37701ceb2", "category": "race_condition", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC124", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|57b4205141bd2c5f0b1855c4b91b58bcfa41e1d53a3e9574c696aaf37701ceb2"}}}, {"ruleId": "MINED071", "level": "none", "message": {"text": "[MINED071] Go Panic Call (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "properties": {"repobilityId": 97070, "scanner": "repobility-threat-engine", "fingerprint": "f6b1ec25300a9ce708bc78ac8ba36564d5b928c50ca542d26911cabf29115dfb", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 7 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "go-panic-call", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348067+00:00", "triaged_in_corpus": 12, "observations_count": 29174, "ai_coder_pattern_id": 108}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|f6b1ec25300a9ce708bc78ac8ba36564d5b928c50ca542d26911cabf29115dfb", "aggregated_count": 7}}}, {"ruleId": "MINED071", "level": "none", "message": {"text": "[MINED071] Go Panic Call: panic() crashes the process. Should return error in most cases."}, "properties": {"repobilityId": 97069, "scanner": "repobility-threat-engine", "fingerprint": "2f4caa4786b18192fee7b7be6ac5ca99e9070e2160f116be6e83c7c911a230ad", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-panic-call", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348067+00:00", "triaged_in_corpus": 12, "observations_count": 29174, "ai_coder_pattern_id": 108}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2f4caa4786b18192fee7b7be6ac5ca99e9070e2160f116be6e83c7c911a230ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/fuzz_eval.go"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED071", "level": "none", "message": {"text": "[MINED071] Go Panic Call: panic() crashes the process. Should return error in most cases."}, "properties": {"repobilityId": 97068, "scanner": "repobility-threat-engine", "fingerprint": "bd77a9ce4e98777fffc6b79c3a3e2e2d793fee746f28729bfe94040486abcc53", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-panic-call", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348067+00:00", "triaged_in_corpus": 12, "observations_count": 29174, "ai_coder_pattern_id": 108}, "scanner": "repobility-threat-engine", "correlation_key": "fp|bd77a9ce4e98777fffc6b79c3a3e2e2d793fee746f28729bfe94040486abcc53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/fuzz_compile.go"}, "region": {"startLine": 6}}}]}, {"ruleId": "MINED071", "level": "none", "message": {"text": "[MINED071] Go Panic Call: panic() crashes the process. Should return error in most cases."}, "properties": {"repobilityId": 97067, "scanner": "repobility-threat-engine", "fingerprint": "d8054170e97a51f91458d3ba577f148d74ecf852b082e082c313aed638f6db78", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-panic-call", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348067+00:00", "triaged_in_corpus": 12, "observations_count": 29174, "ai_coder_pattern_id": 108}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d8054170e97a51f91458d3ba577f148d74ecf852b082e082c313aed638f6db78"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc2.go"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED016", "level": "none", "message": {"text": "[MINED016] Go Error Ignored (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 97066, "scanner": "repobility-threat-engine", "fingerprint": "709bca542cd28c71e4073d9d41e64ad279b9f050c5d517d18ae15a6ddfd9c27f", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "go-error-ignored", "owasp": null, "cwe_ids": ["CWE-754"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347935+00:00", "triaged_in_corpus": 15, "observations_count": 83036, "ai_coder_pattern_id": 107}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|709bca542cd28c71e4073d9d41e64ad279b9f050c5d517d18ae15a6ddfd9c27f", "aggregated_count": 1}}}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function (and 122 more): Same pattern found in 122 additional files. Review if needed."}, "properties": {"repobilityId": 97059, "scanner": "repobility-threat-engine", "fingerprint": "098cf18a9c72180cd62af46b243571fe652f072d4c0615ded81365962e36f2cb", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 122 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|098cf18a9c72180cd62af46b243571fe652f072d4c0615ded81365962e36f2cb", "aggregated_count": 122}}}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 97058, "scanner": "repobility-threat-engine", "fingerprint": "2079a39700a78d61d8d8c88113023ae2949ad59526ad677f23b7eecd2890750a", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2079a39700a78d61d8d8c88113023ae2949ad59526ad677f23b7eecd2890750a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/generate_differential_cov_report.py"}, "region": {"startLine": 51}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 97057, "scanner": "repobility-threat-engine", "fingerprint": "f9f0032fa5c5408cb481d06c4a9fdc6fed12f9d31e33186bc3f3b1d180637fb2", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f9f0032fa5c5408cb481d06c4a9fdc6fed12f9d31e33186bc3f3b1d180637fb2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/sanitizers/pysecsan/pysecsan/yaml_deserialization.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 97056, "scanner": "repobility-threat-engine", "fingerprint": "4c84f9fd52b8f5237c6de7406abd19be757e9db9c6f65189f6d3720f8b3b11a4", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4c84f9fd52b8f5237c6de7406abd19be757e9db9c6f65189f6d3720f8b3b11a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/indexer/utils.py"}, "region": {"startLine": 88}}}]}, {"ruleId": "COMP001", "level": "none", "message": {"text": "[COMP001] High cognitive complexity (and 65 more): Same pattern found in 65 additional files. Review if needed."}, "properties": {"repobilityId": 97055, "scanner": "repobility-threat-engine", "fingerprint": "24f52c716bd4085f306d330bde8a0ef36c3851f1d060b25c8a9cbe6c005add5c", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 65 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 5, "for": 1, "else": 1, "continue": 1, "nested_bonus": 3}, "aggregated": true, "complexity": 11, "correlation_key": "fp|24f52c716bd4085f306d330bde8a0ef36c3851f1d060b25c8a9cbe6c005add5c", "aggregated_count": 65}}}, {"ruleId": "ERR003", "level": "none", "message": {"text": "[ERR003] Ignored Error (Go) (and 11 more): Same pattern found in 11 additional files. Review if needed."}, "properties": {"repobilityId": 97051, "scanner": "repobility-threat-engine", "fingerprint": "16e3d66e367e7be1d308cb3821803a8317c3aa9a3ac01b6604f4c14d3c8ab152", "category": "error_handling", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 11 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 11 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "ERR003", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|16e3d66e367e7be1d308cb3821803a8317c3aa9a3ac01b6604f4c14d3c8ab152"}}}, {"ruleId": "MINED033", "level": "none", "message": {"text": "[MINED033] Go Recover Without Log (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "properties": {"repobilityId": 97047, "scanner": "repobility-threat-engine", "fingerprint": "909365c57e86ddaeea3c7604d82fc6d2fc9a74d50a7c1f80f96128447c1d7463", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 4 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "go-recover-without-log", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347975+00:00", "triaged_in_corpus": 15, "observations_count": 3808, "ai_coder_pattern_id": 109}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|909365c57e86ddaeea3c7604d82fc6d2fc9a74d50a7c1f80f96128447c1d7463", "aggregated_count": 4}}}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101491, "scanner": "repobility-supply-chain", "fingerprint": "9cb0ecaad85047248eff1532e8dc97a4943d5bd676ec4493232a77c476b9169a", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|9cb0ecaad85047248eff1532e8dc97a4943d5bd676ec4493232a77c476b9169a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/index_build_tests.yml"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101490, "scanner": "repobility-supply-chain", "fingerprint": "245a9e0343beafc4d09f8615e5c853cdbb13a966ac10a6f2cd779887c7a4a777", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|245a9e0343beafc4d09f8615e5c853cdbb13a966ac10a6f2cd779887c7a4a777"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/index_build_tests.yml"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101489, "scanner": "repobility-supply-chain", "fingerprint": "46956d4fed0be75e47c6068b1a5a6335040fe02a66647e34165f5237ec200ea6", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|46956d4fed0be75e47c6068b1a5a6335040fe02a66647e34165f5237ec200ea6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/indexer_build.yml"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `google-github-actions/setup-gcloud` pinned to mutable ref `@v3`: `uses: google-github-actions/setup-gcloud@v3` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101488, "scanner": "repobility-supply-chain", "fingerprint": "0bc638dccef981d8416aca4f36a7b035ce85d4e884fe503a7538d955cbd118e3", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0bc638dccef981d8416aca4f36a7b035ce85d4e884fe503a7538d955cbd118e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/infra_tests.yml"}, "region": {"startLine": 45}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-java` pinned to mutable ref `@v5`: `uses: actions/setup-java@v5` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101487, "scanner": "repobility-supply-chain", "fingerprint": "a86e0c6cfa0681ad3faced6977a96cbaed520b535b388c7c8ee7a6b08af9500e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a86e0c6cfa0681ad3faced6977a96cbaed520b535b388c7c8ee7a6b08af9500e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/infra_tests.yml"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101486, "scanner": "repobility-supply-chain", "fingerprint": "e523ab7d677886b7ab05dd700872a26cfc86dcf42d5e8f1f47fb56d254427cdf", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|e523ab7d677886b7ab05dd700872a26cfc86dcf42d5e8f1f47fb56d254427cdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/infra_tests.yml"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101485, "scanner": "repobility-supply-chain", "fingerprint": "85159530b7ba71a58bac4c71a2c2d839477cbf9992fccb0a00baaa5a4b683841", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|85159530b7ba71a58bac4c71a2c2d839477cbf9992fccb0a00baaa5a4b683841"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/infra_tests.yml"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101484, "scanner": "repobility-supply-chain", "fingerprint": "1d86360286cdcc7f2b4f4fa31e730b169aa17639928256fd6aeeb6acb0146845", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|1d86360286cdcc7f2b4f4fa31e730b169aa17639928256fd6aeeb6acb0146845"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/check_base_os.yml"}, "region": {"startLine": 45}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101483, "scanner": "repobility-supply-chain", "fingerprint": "5d3bd68ef86d9353bd5c0a93ffd9a10ffda203250e7ab5256aa481d5dd3017be", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|5d3bd68ef86d9353bd5c0a93ffd9a10ffda203250e7ab5256aa481d5dd3017be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/check_base_os.yml"}, "region": {"startLine": 29}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101482, "scanner": "repobility-supply-chain", "fingerprint": "bb201f7c3dfe3dbc4d06a8599400a2d8b902d75588443d4bf5ea73a07d1abb21", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|bb201f7c3dfe3dbc4d06a8599400a2d8b902d75588443d4bf5ea73a07d1abb21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/presubmit.yml"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101481, "scanner": "repobility-supply-chain", "fingerprint": "ae4da97b1f6b0116c982e0274caa88eb7b47f25ee1575b1c58dea9a35d6a9408", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ae4da97b1f6b0116c982e0274caa88eb7b47f25ee1575b1c58dea9a35d6a9408"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/presubmit.yml"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/github-script` pinned to mutable ref `@v8`: `uses: actions/github-script@v8` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101480, "scanner": "repobility-supply-chain", "fingerprint": "ab1f0eb9d327b737226a7d2d41cca0a21ca07407744cf09ac0bd0661524c4bde", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ab1f0eb9d327b737226a7d2d41cca0a21ca07407744cf09ac0bd0661524c4bde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/pr_helper.yml"}, "region": {"startLine": 62}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/github-script` pinned to mutable ref `@v8`: `uses: actions/github-script@v8` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101479, "scanner": "repobility-supply-chain", "fingerprint": "15b6c0281b82da587a0e12cf3871e494ca76e620632065fc5df20df1647e7c06", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|15b6c0281b82da587a0e12cf3871e494ca76e620632065fc5df20df1647e7c06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/pr_helper.yml"}, "region": {"startLine": 49}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-go` pinned to mutable ref `@v6`: `uses: actions/setup-go@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101478, "scanner": "repobility-supply-chain", "fingerprint": "5bd4f259caf24c51fd85f910f380235ae8150317c104b66ab4e5e95d413e2490", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|5bd4f259caf24c51fd85f910f380235ae8150317c104b66ab4e5e95d413e2490"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/pr_helper.yml"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101477, "scanner": "repobility-supply-chain", "fingerprint": "876b2558f00e58d5736cc6cdb0492a7a89f7f1ff427e17a2139cbc397d1b2a8e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|876b2558f00e58d5736cc6cdb0492a7a89f7f1ff427e17a2139cbc397d1b2a8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/pr_helper.yml"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101476, "scanner": "repobility-supply-chain", "fingerprint": "d7081fe6cda99c699a6565f26803e69f1ee469b804070e6a99300274aff29f12", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d7081fe6cda99c699a6565f26803e69f1ee469b804070e6a99300274aff29f12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/pr_helper.yml"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `github/codeql-action/analyze` pinned to mutable ref `@v2`: `uses: github/codeql-action/analyze@v2` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101475, "scanner": "repobility-supply-chain", "fingerprint": "fe0e199877ac8759e73985d2f8f50045cc75c13a8fae044ffc75fa106865ab0f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|fe0e199877ac8759e73985d2f8f50045cc75c13a8fae044ffc75fa106865ab0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/codeql-analysis.yml"}, "region": {"startLine": 55}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `github/codeql-action/autobuild` pinned to mutable ref `@v2`: `uses: github/codeql-action/autobuild@v2` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101474, "scanner": "repobility-supply-chain", "fingerprint": "12e86a936922a66cd31b7f0363529f409e678221f8a34db00abb725d2b5a1e69", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|12e86a936922a66cd31b7f0363529f409e678221f8a34db00abb725d2b5a1e69"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/codeql-analysis.yml"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `github/codeql-action/init` pinned to mutable ref `@v2`: `uses: github/codeql-action/init@v2` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101473, "scanner": "repobility-supply-chain", "fingerprint": "864872ff7e2f49ad4736655604244794bfc1f183597adcc3ad5b9d8ea4a7c345", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|864872ff7e2f49ad4736655604244794bfc1f183597adcc3ad5b9d8ea4a7c345"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/codeql-analysis.yml"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101472, "scanner": "repobility-supply-chain", "fingerprint": "07a369241f28befd07407b986252100e9d699b5741939fb8d8480d505c16101c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|07a369241f28befd07407b986252100e9d699b5741939fb8d8480d505c16101c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/codeql-analysis.yml"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101471, "scanner": "repobility-supply-chain", "fingerprint": "575afeac8ac7775d1cfde41cd90ab76a2cf1792423f530518d6efddd3342ba0f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|575afeac8ac7775d1cfde41cd90ab76a2cf1792423f530518d6efddd3342ba0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/ubuntu_version_sync.yml"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/setup-python` pinned to mutable ref `@v6`: `uses: actions/setup-python@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101470, "scanner": "repobility-supply-chain", "fingerprint": "b924749ffd07e07fe80df52dc4d095a8b13e6b1da6d75f561cefc45c492ac1fe", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|b924749ffd07e07fe80df52dc4d095a8b13e6b1da6d75f561cefc45c492ac1fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/project_tests.yml"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/checkout` pinned to mutable ref `@v6`: `uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101469, "scanner": "repobility-supply-chain", "fingerprint": "1e0814c5872805169b904fca96a7439e6cf747fb418bfed02f0d12cf4c312e08", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|1e0814c5872805169b904fca96a7439e6cf747fb418bfed02f0d12cf4c312e08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/project_tests.yml"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `google/clusterfuzzlite/actions/run_fuzzers` pinned to mutable ref `@v1`: `uses: google/clusterfuzzlite/actions/run_fuzzers@v1` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101466, "scanner": "repobility-supply-chain", "fingerprint": "f26abc037f4526db0ea771ee53f625fa44e8b47bac0dbf391a5dee22846eb97f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|f26abc037f4526db0ea771ee53f625fa44e8b47bac0dbf391a5dee22846eb97f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/cflite_pr.yml"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `google/clusterfuzzlite/actions/build_fuzzers` pinned to mutable ref `@v1`: `uses: google/clusterfuzzlite/actions/build_fuzzers@v1` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 101465, "scanner": "repobility-supply-chain", "fingerprint": "07053808e8271304ac9f4a8f74c6af572b941916cc71f4fccd0c262b757baf3c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|07053808e8271304ac9f4a8f74c6af572b941916cc71f4fccd0c262b757baf3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/cflite_pr.yml"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://github.com/json-c/json-c/archive/refs/tags/json-c-0.17-20230812.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101463, "scanner": "repobility-supply-chain", "fingerprint": "7c6bd1dd12f7e40407d7a6084dbcb6ec26f7837183ad1235b8f66a466eebdd3e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|7c6bd1dd12f7e40407d7a6084dbcb6ec26f7837183ad1235b8f66a466eebdd3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://github.com/zeromq/libzmq/releases/download/v4.3.5/zeromq-4.3.5.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101462, "scanner": "repobility-supply-chain", "fingerprint": "852d3d66b310d6c41be170bd305d3d66bb073de9577efb1d7bd4c3084ecf5163", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|852d3d66b310d6c41be170bd305d3d66bb073de9577efb1d7bd4c3084ecf5163"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 39}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://www.tcpdump.org/release/libpcap-1.9.1.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101461, "scanner": "repobility-supply-chain", "fingerprint": "d9dbd7f440ea7208ccbda1ece41f470e5b0c7c76a25191144a58a003a221e26c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d9dbd7f440ea7208ccbda1ece41f470e5b0c7c76a25191144a58a003a221e26c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ntopng/Dockerfile"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD http://oss-fuzz-corpus.storage.googleapis.com/libraw/libraw_raf_fuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101460, "scanner": "repobility-supply-chain", "fingerprint": "5cea04db690fc0a543568122160aa4c4944f0fe389a84ebfae46ee3a99b1f04b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|5cea04db690fc0a543568122160aa4c4944f0fe389a84ebfae46ee3a99b1f04b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD http://oss-fuzz-corpus.storage.googleapis.com/libraw/libraw_nef_fuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101459, "scanner": "repobility-supply-chain", "fingerprint": "45484ac162fbfaed41b6188fa220c9c1f78ba271ffbc83539aeb083d2a1cb811", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|45484ac162fbfaed41b6188fa220c9c1f78ba271ffbc83539aeb083d2a1cb811"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD http://oss-fuzz-corpus.storage.googleapis.com/libraw/libraw_cr2_fuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101458, "scanner": "repobility-supply-chain", "fingerprint": "ebfa76ef6557c17e8d436870415dcd40d41e31be68e1eb4b71032bf1136a9c43", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ebfa76ef6557c17e8d436870415dcd40d41e31be68e1eb4b71032bf1136a9c43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libraw/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://dev-www.libreoffice.org/corpus/olefuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101457, "scanner": "repobility-supply-chain", "fingerprint": "2ff5e6b75a2ff0af61f3011bcfbb0ab5619bb6d39fa89f2bd975a413e3dcda29", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|2ff5e6b75a2ff0af61f3011bcfbb0ab5619bb6d39fa89f2bd975a413e3dcda29"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://dev-www.libreoffice.org/src/lcms2-2.18.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101456, "scanner": "repobility-supply-chain", "fingerprint": "ccea2ce2171db6847dc3ac39f011fa6f2cdb234437b6040ccba61fea736bb5d3", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ccea2ce2171db6847dc3ac39f011fa6f2cdb234437b6040ccba61fea736bb5d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dlplibs/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://rules.emergingthreats.net/open/suricata/emerging.rules.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101455, "scanner": "repobility-supply-chain", "fingerprint": "9eab8d905c7bdf6a88e8fb1e7cd66a5fbab9597ab2e774aa7e55a540786040ba", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|9eab8d905c7bdf6a88e8fb1e7cd66a5fbab9597ab2e774aa7e55a540786040ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gonids/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://lcamtuf.coredump.cx/afl/demo/afl_testcases.tgz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101454, "scanner": "repobility-supply-chain", "fingerprint": "492023b75b5d413c789ea38a42ec3d6daaba31a3d5978dacf5e398ee171722dd", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|492023b75b5d413c789ea38a42ec3d6daaba31a3d5978dacf5e398ee171722dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libgd/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://storage.googleapis.com/downloads.webmproject.org/webp/testdata/fuzzer/fuzz_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101453, "scanner": "repobility-supply-chain", "fingerprint": "a2001f320715f476b19bc3bd0c7ccbcd888b60db853703229cae3d0fc51c88ea", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a2001f320715f476b19bc3bd0c7ccbcd888b60db853703229cae3d0fc51c88ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libwebp/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://rules.emergingthreats.net/open/suricata/emerging.rules.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101452, "scanner": "repobility-supply-chain", "fingerprint": "cefbc31b0aaeb66a34f253892aa6e8691013f1642905a6f145b7b63838868b7a", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|cefbc31b0aaeb66a34f253892aa6e8691013f1642905a6f145b7b63838868b7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 29}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://github.com/lz4/lz4/archive/v1.9.2.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101451, "scanner": "repobility-supply-chain", "fingerprint": "d64c9b171346c20e703b62d8e1f803316b2cd1b687d8ea1b0222bc3e9eea403f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d64c9b171346c20e703b62d8e1f803316b2cd1b687d8ea1b0222bc3e9eea403f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://github.com/akheron/jansson/releases/download/v2.14/jansson-2.14.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101450, "scanner": "repobility-supply-chain", "fingerprint": "40d29663324a526bc5e89b7af35c1abb08d4369a14ed6e13b0af72b0a2402c0e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|40d29663324a526bc5e89b7af35c1abb08d4369a14ed6e13b0af72b0a2402c0e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://www.tcpdump.org/release/libpcap-1.9.1.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101449, "scanner": "repobility-supply-chain", "fingerprint": "d1e674cf889dc2657d802e2c8837fd95d0ea8136d2c60a7b250a2c7b8003e4c5", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d1e674cf889dc2657d802e2c8837fd95d0ea8136d2c60a7b250a2c7b8003e4c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://github.com/PhilipHazel/pcre2/releases/download/pcre2-10.39/pcre2-10.39.tar.gz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101448, "scanner": "repobility-supply-chain", "fingerprint": "4edf986f89db1c46c7d2a84ff350739f60d6ce304ad361196a15e53e86216033", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|4edf986f89db1c46c7d2a84ff350739f60d6ce304ad361196a15e53e86216033"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/suricata/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://raw.githubusercontent.com/google/fuzzing/master/dictionaries/svg.dict`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101447, "scanner": "repobility-supply-chain", "fingerprint": "5ee78a7384b1e729f1601f0eb6832ed16a4db7b5ab85b69633416ffbf927dd62", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|5ee78a7384b1e729f1601f0eb6832ed16a4db7b5ab85b69633416ffbf927dd62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://raw.githubusercontent.com/google/fuzzing/master/dictionaries/png.dict`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101446, "scanner": "repobility-supply-chain", "fingerprint": "01a20b694a76b30c4a90580f2f4661d4df745b11315879321bd46960f1d3f495", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|01a20b694a76b30c4a90580f2f4661d4df745b11315879321bd46960f1d3f495"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cairo/Dockerfile"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://raw.githubusercontent.com/llvm-mirror/compiler-rt/master/test/fuzzer/MultipleConstraintsOnSmallInputTest.cpp`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101445, "scanner": "repobility-supply-chain", "fingerprint": "2393dc47208a785647e904b003fd1e4e0b742e9e954dc7b24b5d8d5e0cab2503", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|2393dc47208a785647e904b003fd1e4e0b742e9e954dc7b24b5d8d5e0cab2503"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fuzzing-puzzles/Dockerfile"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://storage.googleapis.com/aom-test-data/fuzzer/dec_fuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101444, "scanner": "repobility-supply-chain", "fingerprint": "93e0be9b6eb2897c891461beaeb80df34985f57c1fe09a68c9a1a73b03bd644c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|93e0be9b6eb2897c891461beaeb80df34985f57c1fe09a68c9a1a73b03bd644c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libaom/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://ftp.gnu.org/gnu/gmp/gmp-6.2.1.tar.bz2`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101443, "scanner": "repobility-supply-chain", "fingerprint": "02ac8307d332b096d9dc6b70ec06ecf516f1c7c5d9925d1f0796bcea9281336b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|02ac8307d332b096d9dc6b70ec06ecf516f1c7c5d9925d1f0796bcea9281336b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ecc-diff-fuzzer/Dockerfile"}, "region": {"startLine": 43}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://raw.githubusercontent.com/rc0r/afl-fuzz/master/dictionaries/pdf.dict`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101442, "scanner": "repobility-supply-chain", "fingerprint": "456d7d933c4a8b5bbec765ae5c533064ef09a9f30bf976dcb134384ea7e5bcf3", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|456d7d933c4a8b5bbec765ae5c533064ef09a9f30bf976dcb134384ea7e5bcf3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/mupdf/Dockerfile"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://storage.googleapis.com/yubico-libfido2/corpus.tgz`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101441, "scanner": "repobility-supply-chain", "fingerprint": "03896f309769a6b6e0f449031d230995f9ed186cd9b2f9f2e80b5e230ae48a8b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|03896f309769a6b6e0f449031d230995f9ed186cd9b2f9f2e80b5e230ae48a8b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libfido2/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://storage.googleapis.com/clusterfuzz-builds/piex/piex-address-202411210638.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101440, "scanner": "repobility-supply-chain", "fingerprint": "bade3fcd55d48281d9b986f31758e16ec232b601c9312ea842f9fe8174a7293f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|bade3fcd55d48281d9b986f31758e16ec232b601c9312ea842f9fe8174a7293f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/piex/Dockerfile"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED119", "level": "error", "message": {"text": "[MINED119] Dockerfile `ADD https://storage.googleapis.com/downloads.webmproject.org/test_data/fuzzer/vpx_fuzzer_seed_corpus.zip`: Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers \u2014 or if the URL serves a different file later \u2014 malicious content gets baked into the image."}, "properties": {"repobilityId": 101439, "scanner": "repobility-supply-chain", "fingerprint": "1bd66a4b65d72d95ca7274be68d11b24f16199befba58e3434b80966d99aa843", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-add-remote-url", "owasp": "A08:2021", "cwe_ids": ["CWE-829", "CWE-494"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|1bd66a4b65d72d95ca7274be68d11b24f16199befba58e3434b80966d99aa843"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libvpx/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-rust (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-rust (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101438, "scanner": "repobility-supply-chain", "fingerprint": "b9652620e831ca5116b7401a55191c24e15a5c9dee3b596d3d7fbe45a24f5ee0", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|b9652620e831ca5116b7401a55191c24e15a5c9dee3b596d3d7fbe45a24f5ee0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/lz4_flex/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-rust (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-rust (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101437, "scanner": "repobility-supply-chain", "fingerprint": "a653acdecef3a610863c745ae3a0fe6d74dc32a565f0570032e79d6824aeae52", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a653acdecef3a610863c745ae3a0fe6d74dc32a565f0570032e79d6824aeae52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tokio/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-rust (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-rust (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101436, "scanner": "repobility-supply-chain", "fingerprint": "c25757e16b5dd314b7d47e7aa7e8a7189da03dcdaf306ac02dce28414ee1f5d7", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c25757e16b5dd314b7d47e7aa7e8a7189da03dcdaf306ac02dce28414ee1f5d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/migtd/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-go:ubuntu-24-04` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101435, "scanner": "repobility-supply-chain", "fingerprint": "fd53d95c68fe15bf489169092a419044f80816da4e4fce20a943a8f071daca6b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|fd53d95c68fe15bf489169092a419044f80816da4e4fce20a943a8f071daca6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cubefs/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101434, "scanner": "repobility-supply-chain", "fingerprint": "ada5ecc7b3bcc2efa6ea8eeb755a30994a5a8dfb50a101afe727909287c68472", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ada5ecc7b3bcc2efa6ea8eeb755a30994a5a8dfb50a101afe727909287c68472"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dropbear/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101433, "scanner": "repobility-supply-chain", "fingerprint": "900f23b5eacae3e8f43bc181dcaadf6a22253d51c7c962c46f67ca784955f212", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|900f23b5eacae3e8f43bc181dcaadf6a22253d51c7c962c46f67ca784955f212"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libplist/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101432, "scanner": "repobility-supply-chain", "fingerprint": "7c97f59f23dfea7fd4e69840105a66e573770a2fac2728a4eff8978388cc83f4", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|7c97f59f23dfea7fd4e69840105a66e573770a2fac2728a4eff8978388cc83f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/zopfli/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101431, "scanner": "repobility-supply-chain", "fingerprint": "a45e0e89a1e46c81d020d8cf041ae33bda624e61a350c93edaf95b6d6559ca24", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a45e0e89a1e46c81d020d8cf041ae33bda624e61a350c93edaf95b6d6559ca24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/janino/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101430, "scanner": "repobility-supply-chain", "fingerprint": "c2f5e292524cdd4c3dd1ca90f5da6c3a2dbf829450b3c110c203b613746bb631", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c2f5e292524cdd4c3dd1ca90f5da6c3a2dbf829450b3c110c203b613746bb631"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ots/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-go (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-go (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101429, "scanner": "repobility-supply-chain", "fingerprint": "dbb3171daa2bbd71135470923791edd21c502f01ff5e1ae7507e0809907df85f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|dbb3171daa2bbd71135470923791edd21c502f01ff5e1ae7507e0809907df85f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/syzkaller/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-go (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-go (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101428, "scanner": "repobility-supply-chain", "fingerprint": "37799ecb105a9d9febf25fe8d386ff99d4c5c121455d34cc4608705b392a60b4", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|37799ecb105a9d9febf25fe8d386ff99d4c5c121455d34cc4608705b392a60b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/go-pprof/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-python:ubuntu-24-04` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101427, "scanner": "repobility-supply-chain", "fingerprint": "f911fe6fe3616374b24f6baf0651a68137a73d141bfaff954ee08b91524db489", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|f911fe6fe3616374b24f6baf0651a68137a73d141bfaff954ee08b91524db489"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-fastjsonschema/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101426, "scanner": "repobility-supply-chain", "fingerprint": "01dc2d8c8fb8417ccc13ad0c0604444e45aa9988c4e2fe87ef0910af5ce2b43c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|01dc2d8c8fb8417ccc13ad0c0604444e45aa9988c4e2fe87ef0910af5ce2b43c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/stax/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-jvm (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101425, "scanner": "repobility-supply-chain", "fingerprint": "96700eb0651adf872eedca6bd4c0b92fa8405e0d32d546a189b7e473046e109c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|96700eb0651adf872eedca6bd4c0b92fa8405e0d32d546a189b7e473046e109c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unirest-java/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-python (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-python (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101424, "scanner": "repobility-supply-chain", "fingerprint": "3f83b076f2dcdf63b12d83a5b40fa92df599416702634f1043fee0f36f0ee283", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|3f83b076f2dcdf63b12d83a5b40fa92df599416702634f1043fee0f36f0ee283"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jedi/Dockerfile"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101423, "scanner": "repobility-supply-chain", "fingerprint": "580880f3700575d2c159d1065300216ec1b8b8ee3a73cfaf643d9a11aca34b37", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|580880f3700575d2c159d1065300216ec1b8b8ee3a73cfaf643d9a11aca34b37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/xz/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101422, "scanner": "repobility-supply-chain", "fingerprint": "6b273fdd2c118943a1d3f9a2152d09bef90b75494971d405432bf8216de03b34", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|6b273fdd2c118943a1d3f9a2152d09bef90b75494971d405432bf8216de03b34"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libredwg/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-go (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-go (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101421, "scanner": "repobility-supply-chain", "fingerprint": "92b456517aee104d455d62d279c9b95e7c864921bbf0226713da2a48d6d648bd", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|92b456517aee104d455d62d279c9b95e7c864921bbf0226713da2a48d6d648bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gosnmp/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-javascript (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-javascript (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101420, "scanner": "repobility-supply-chain", "fingerprint": "6268685eed96cb8cc2bc120367d19348c797284714649ae312c2f33b7e4cc851", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|6268685eed96cb8cc2bc120367d19348c797284714649ae312c2f33b7e4cc851"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angular/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-python (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-python (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101419, "scanner": "repobility-supply-chain", "fingerprint": "86f519940bc71753ee99039b3b59b611a9983e4c6cebbb7112f7e6bc4dd7ad21", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|86f519940bc71753ee99039b3b59b611a9983e4c6cebbb7112f7e6bc4dd7ad21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-python-tasks/Dockerfile"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder-python:v1` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder-python:v1` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101418, "scanner": "repobility-supply-chain", "fingerprint": "330290e59a827050d98377d7d598d4eebb440af701a58443fccf168b276f8005", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|330290e59a827050d98377d7d598d4eebb440af701a58443fccf168b276f8005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".clusterfuzzlite/Dockerfile"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/cifuzz-base:ubuntu-24-04` not pinned by digest: `FROM gcr.io/oss-fuzz-base/cifuzz-base:ubuntu-24-04` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101417, "scanner": "repobility-supply-chain", "fingerprint": "cd8e13fd9a96e978de1fda6623b10bc9e57f13048a0116ab3ec8679808706302", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|cd8e13fd9a96e978de1fda6623b10bc9e57f13048a0116ab3ec8679808706302"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/run_fuzzers.ubuntu-24-04.Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/cifuzz-base:ubuntu-24-04` not pinned by digest: `FROM gcr.io/oss-fuzz-base/cifuzz-base:ubuntu-24-04` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101416, "scanner": "repobility-supply-chain", "fingerprint": "bfadb6382b2d28ac19edc1af30fe6d2c01ee94f108c75ec306e724715719b367", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|bfadb6382b2d28ac19edc1af30fe6d2c01ee94f108c75ec306e724715719b367"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build_fuzzers.ubuntu-24-04.Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/cifuzz-base (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/cifuzz-base (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101415, "scanner": "repobility-supply-chain", "fingerprint": "8f812b0106aac9dc2386197c70ba90c9e0b0e1584887668f443936ddacbad2ce", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|8f812b0106aac9dc2386197c70ba90c9e0b0e1584887668f443936ddacbad2ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/build_fuzzers.Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/cifuzz-base (no tag)` not pinned by digest: `FROM gcr.io/oss-fuzz-base/cifuzz-base (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 101414, "scanner": "repobility-supply-chain", "fingerprint": "d9b0184e0c11c04ea3489e4cfc422244f94a89b2846b8b7baf3dd567c57192cc", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d9b0184e0c11c04ea3489e4cfc422244f94a89b2846b8b7baf3dd567c57192cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/run_fuzzers.Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH filestore.github_actions._upload_artifact_with_upload_js has no auth: Handler `test_coverage_report` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101413, "scanner": "repobility-route-auth", "fingerprint": "2626a7c1f2d29470afe87c0462b5b9323322531898cc91b6092cd6206a947ac7", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|2626a7c1f2d29470afe87c0462b5b9323322531898cc91b6092cd6206a947ac7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers_test.py"}, "region": {"startLine": 343}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.get_fuzz_targets has no auth: Handler `test_run_fuzz_targets_quits` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101412, "scanner": "repobility-route-auth", "fingerprint": "67856c0b568dda40ebde74834fac62c18451b013a2f0734252da131881f8917d", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|67856c0b568dda40ebde74834fac62c18451b013a2f0734252da131881f8917d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers_test.py"}, "region": {"startLine": 278}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH clusterfuzz_deployment.OSSFuzz.upload_crashes has no auth: Handler `test_run_fuzz_targets_quits` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101411, "scanner": "repobility-route-auth", "fingerprint": "c7584b01e5c3719f6d71428f47cbcc371a9b5a5b8ce265b27adc8f1fcb0eb276", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|c7584b01e5c3719f6d71428f47cbcc371a9b5a5b8ce265b27adc8f1fcb0eb276"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers_test.py"}, "region": {"startLine": 226}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.get_fuzz_targets has no auth: Handler `test_initialize_no_artifacts` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101410, "scanner": "repobility-route-auth", "fingerprint": "bab8ea548daace417b054c9ccc635bb334a15b113ed5d42317b37adfb4990fa0", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|bab8ea548daace417b054c9ccc635bb334a15b113ed5d42317b37adfb4990fa0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers_test.py"}, "region": {"startLine": 195}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.get_fuzz_targets has no auth: Handler `test_initialize_empty_artifacts` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101409, "scanner": "repobility-route-auth", "fingerprint": "a8df8282422a91f2d82de9f17059a0b08edd45d58a4b0183a787563fa7d33bbe", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|a8df8282422a91f2d82de9f17059a0b08edd45d58a4b0183a787563fa7d33bbe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/run_fuzzers_test.py"}, "region": {"startLine": 179}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH config_utils._is_dry_run has no auth: Handler `_create_config` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101408, "scanner": "repobility-route-auth", "fingerprint": "df7259b52d97f27dd0ee177b25503e9d65df7444f1cdd2f65d104d914c35f56a", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|df7259b52d97f27dd0ee177b25503e9d65df7444f1cdd2f65d104d914c35f56a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/test_helpers.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.execute has no auth: Handler `test_run_coverage_command` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101407, "scanner": "repobility-route-auth", "fingerprint": "9962770556d95cf43dee3cbdb9de6c068706ab2ba5b7fbc88bd9d86be9ba4003", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|9962770556d95cf43dee3cbdb9de6c068706ab2ba5b7fbc88bd9d86be9ba4003"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/generate_coverage_report_test.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH logging.error has no auth: Handler `test_get_oss_fuzz_latest_cov_report_info_fail` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101406, "scanner": "repobility-route-auth", "fingerprint": "cf80208c9b2f1aec590cad696230f8ab1135fa8f7f5c961db90db8d0ad548f53", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|cf80208c9b2f1aec590cad696230f8ab1135fa8f7f5c961db90db8d0ad548f53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage_test.py"}, "region": {"startLine": 242}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH logging.error has no auth: Handler `test_get_oss_fuzz_latest_cov_report_info` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101405, "scanner": "repobility-route-auth", "fingerprint": "0ce537327049a02fc530009c7c3b4ff0504c0971acf9be7745b43f0ad0ba8051", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|0ce537327049a02fc530009c7c3b4ff0504c0971acf9be7745b43f0ad0ba8051"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage_test.py"}, "region": {"startLine": 232}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH get_coverage._get_oss_fuzz_latest_cov_report_info has no auth: Handler `test_invalid_project_json` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101404, "scanner": "repobility-route-auth", "fingerprint": "f07ce0a7cd31de9e6af6d518f95825c1ea38597ed27162ae5f2b43f2d57ea1b0", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|f07ce0a7cd31de9e6af6d518f95825c1ea38597ed27162ae5f2b43f2d57ea1b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage_test.py"}, "region": {"startLine": 99}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH http_utils.get_json_from_url has no auth: Handler `test_valid_target` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101403, "scanner": "repobility-route-auth", "fingerprint": "38d81752f714faf43b1c2bab94ea05d129b66605a6d6e7cbc254f6516235f644", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|38d81752f714faf43b1c2bab94ea05d129b66605a6d6e7cbc254f6516235f644"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage_test.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH http_utils.get_json_from_url has no auth: Handler `test_get_valid_project` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101402, "scanner": "repobility-route-auth", "fingerprint": "2e8881c587d5d3d626ba63f9d562346ab89904b3f7bafab15a6a14808da01824", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|2e8881c587d5d3d626ba63f9d562346ab89904b3f7bafab15a6a14808da01824"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage_test.py"}, "region": {"startLine": 51}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH helper.docker_build has no auth: Handler `test_build_external_project_docker_image` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101401, "scanner": "repobility-route-auth", "fingerprint": "45ba90e6cbde451e30efe0ece28c6eeed094a22dd8f058ef9b0593e16072e62d", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|45ba90e6cbde451e30efe0ece28c6eeed094a22dd8f058ef9b0593e16072e62d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/continuous_integration_test.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.execute has no auth: Handler `test_fix_git_repo_for_diff` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101400, "scanner": "repobility-route-auth", "fingerprint": "bf2b8c6ee027ebe27ec1b5ec45be0cd887f2802ce554ea52d437199223c60ab5", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|bf2b8c6ee027ebe27ec1b5ec45be0cd887f2802ce554ea52d437199223c60ab5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/continuous_integration_test.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH utils.execute has no auth: Handler `test_clone_with_username` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101399, "scanner": "repobility-route-auth", "fingerprint": "e4b2a9ccd457f5825f8cdc75cc41a911b4d628a1ba5650864038cfdab9b08d18", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|e4b2a9ccd457f5825f8cdc75cc41a911b4d628a1ba5650864038cfdab9b08d18"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/repo_manager_test.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH pr_helper.uuid.uuid4 has no auth: Handler `test_save_env_none_values` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101398, "scanner": "repobility-route-auth", "fingerprint": "b47aa604ae225cf25b18103bfce579941dbdd1a6b2818bf6be00cfc9567b9353", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|b47aa604ae225cf25b18103bfce579941dbdd1a6b2818bf6be00cfc9567b9353"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/pr_helper_test.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH pr_helper.uuid.uuid4 has no auth: Handler `test_save_env_basic` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101397, "scanner": "repobility-route-auth", "fingerprint": "af958736d7525f78d080be1c6750f32bbefe60f62e8a7de40b633f0db0fee7bc", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|af958736d7525f78d080be1c6750f32bbefe60f62e8a7de40b633f0db0fee7bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/pr_helper_test.py"}, "region": {"startLine": 88}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH helper._get_current_datetime has no auth: Handler `test_generate_swift_project` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101396, "scanner": "repobility-route-auth", "fingerprint": "b1063c2b5fb181d616f616ad3df3efacc51975629b18c0f6a06b452d199f4a42", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|b1063c2b5fb181d616f616ad3df3efacc51975629b18c0f6a06b452d199f4a42"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 161}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH helper._get_current_datetime has no auth: Handler `test_generate_oss_fuzz_project` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101395, "scanner": "repobility-route-auth", "fingerprint": "b03552be8189a9513e062fa0215681d4280488cc4bb754090103519e763c41b6", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|b03552be8189a9513e062fa0215681d4280488cc4bb754090103519e763c41b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH common_utils.docker_build has no auth: Handler `test_external_project` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101394, "scanner": "repobility-route-auth", "fingerprint": "a11b8e6280254bacd3730c469fc5a1073f6d003095023fd2692b26e239a00d20", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|a11b8e6280254bacd3730c469fc5a1073f6d003095023fd2692b26e239a00d20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH common_utils.docker_build has no auth: Handler `test_oss_fuzz_project` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101393, "scanner": "repobility-route-auth", "fingerprint": "6933d332efeef4b88bdea0a89cf7b47e5abf43ce924f40b2f65462be49372b54", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|6933d332efeef4b88bdea0a89cf7b47e5abf43ce924f40b2f65462be49372b54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH common_utils.docker_build has no auth: Handler `test_base_image` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101392, "scanner": "repobility-route-auth", "fingerprint": "263964d6bc2c331aab12074041a0126e77586191c3843c65df7499ca53b1aff4", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|263964d6bc2c331aab12074041a0126e77586191c3843c65df7499ca53b1aff4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH common_utils.docker_build has no auth: Handler `test_pull` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101391, "scanner": "repobility-route-auth", "fingerprint": "8bd04b7b7fbc1dbe61fe78794e7ce9d20b2a7d88045c9c1d82fc0159cb5292a0", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|8bd04b7b7fbc1dbe61fe78794e7ce9d20b2a7d88045c9c1d82fc0159cb5292a0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 60}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH common_utils.docker_build has no auth: Handler `test_no_cache` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101390, "scanner": "repobility-route-auth", "fingerprint": "9ec9e8d37afa52606f5b4194ba853d4993a22b2260591e12a132ca933ccd8e81", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|9ec9e8d37afa52606f5b4194ba853d4993a22b2260591e12a132ca933ccd8e81"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "[MINED112] FastAPI PATCH helper.docker_run has no auth: Handler `test_base_runner_debug` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"repobilityId": 101389, "scanner": "repobility-route-auth", "fingerprint": "43256ab4fa54327a863d37ae41e0268f5fb3c7ec6cbfef3d2898f0c5edcb3550", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|43256ab4fa54327a863d37ae41e0268f5fb3c7ec6cbfef3d2898f0c5edcb3550"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED110", "level": "error", "message": {"text": "[MINED110] Blocking call `time.sleep` inside async function `run_agent_loop`: `time.sleep` is a synchronous (blocking) call. When invoked inside an `async def` it stalls the event loop, preventing every other coroutine in the process from making progress."}, "properties": {"repobilityId": 101388, "scanner": "repobility-ast-engine", "fingerprint": "b9b4efdcdde50a47db480c02eeca162affc5967bbabce19f336f2c5f3c091b89", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "asyncio-blocking-call", "owasp": null, "cwe_ids": ["CWE-833"], "languages": ["python"], "observations_count": 31606}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b9b4efdcdde50a47db480c02eeca162affc5967bbabce19f336f2c5f3c091b89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/mcp/client.py"}, "region": {"startLine": 204}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_checksum: Test function `test_checksum` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101386, "scanner": "repobility-ast-engine", "fingerprint": "a3d10872559dc2ffe2568d486e8a5ae57dd2c4e61424c170429ca2a8dec38932", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a3d10872559dc2ffe2568d486e8a5ae57dd2c4e61424c170429ca2a8dec38932"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/fuzz_uploader.py"}, "region": {"startLine": 58}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_multipart: Test function `test_multipart` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101385, "scanner": "repobility-ast-engine", "fingerprint": "b70a222cee7cd78fc88de65a4d44e585d91bdbe1dfa306bc9f04972261b8ba50", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b70a222cee7cd78fc88de65a4d44e585d91bdbe1dfa306bc9f04972261b8ba50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/fuzz_uploader.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_simple: Test function `test_simple` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101384, "scanner": "repobility-ast-engine", "fingerprint": "9eceeefcc63331bc075e6996f9ebc3f0d7ffe315ced4ba095d2ad5e4501f9f6f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9eceeefcc63331bc075e6996f9ebc3f0d7ffe315ced4ba095d2ad5e4501f9f6f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/fuzz_uploader.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_add_secret_version: Test function `test_add_secret_version` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101383, "scanner": "repobility-ast-engine", "fingerprint": "2048ff1c29ce249b18f9045942429eaa3fedc1b1b56bcde940084fb2ace8d556", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2048ff1c29ce249b18f9045942429eaa3fedc1b1b56bcde940084fb2ace8d556"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-secret-manager/fuzz_client.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_merge: Test function `test_merge` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101382, "scanner": "repobility-ast-engine", "fingerprint": "d186c89c5ad888623863ac402b5b3613080d3ae5098d96d181d4b00b32e2dea8", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d186c89c5ad888623863ac402b5b3613080d3ae5098d96d181d4b00b32e2dea8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glom/fuzz_reduction.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_flatten: Test function `test_flatten` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101381, "scanner": "repobility-ast-engine", "fingerprint": "6d46e6a38a88e978a4ea0beab750b83b0a661477d869bfd7a2539ae5c7aad70b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6d46e6a38a88e978a4ea0beab750b83b0a661477d869bfd7a2539ae5c7aad70b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/glom/fuzz_reduction.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_set_iam_policy: Test function `test_set_iam_policy` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101380, "scanner": "repobility-ast-engine", "fingerprint": "411a4e99c36d843e6b0fc06fdba8570e0f89e007b9837b70c0cddfff0cfe9095", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|411a4e99c36d843e6b0fc06fdba8570e0f89e007b9837b70c0cddfff0cfe9095"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 98}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_get_iam_policy: Test function `test_get_iam_policy` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101379, "scanner": "repobility-ast-engine", "fingerprint": "a7b5fce8a839f27494db134e6d94519c0404593dc9f7c2765bf5692c305d4096", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a7b5fce8a839f27494db134e6d94519c0404593dc9f7c2765bf5692c305d4096"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_delete_tag_value: Test function `test_delete_tag_value` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101378, "scanner": "repobility-ast-engine", "fingerprint": "4add5b2647bc2ff0a41291d686290161bc519ac8e44c2c3b470bb681f1e8fc5a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4add5b2647bc2ff0a41291d686290161bc519ac8e44c2c3b470bb681f1e8fc5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_update_tag_value: Test function `test_update_tag_value` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101377, "scanner": "repobility-ast-engine", "fingerprint": "bebee2f9a6b608b8f4a40a7ce866c95ed59b1a5a60ed554e73321b30abaea1d7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bebee2f9a6b608b8f4a40a7ce866c95ed59b1a5a60ed554e73321b30abaea1d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_create_tag_value: Test function `test_create_tag_value` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101376, "scanner": "repobility-ast-engine", "fingerprint": "2daa7e185fa6aed7d494150740f20c2551a43584ce7e9fcb2a9784c64658de6e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2daa7e185fa6aed7d494150740f20c2551a43584ce7e9fcb2a9784c64658de6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 54}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_get_tag_value: Test function `test_get_tag_value` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101375, "scanner": "repobility-ast-engine", "fingerprint": "7a4328bc861130aa18799ab54692766bc7ac30c5de5129581c5dc4e7b2b83bdc", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7a4328bc861130aa18799ab54692766bc7ac30c5de5129581c5dc4e7b2b83bdc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resource-manager/fuzz_tag_values_client.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_git: Test function `test_git` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101370, "scanner": "repobility-ast-engine", "fingerprint": "5250ffdc3e145d06e1593a41da0ab675e348b3096680516f3ba15c598528a604", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5250ffdc3e145d06e1593a41da0ab675e348b3096680516f3ba15c598528a604"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pathspec/fuzz_pathspec.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_raw: Test function `test_raw` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101369, "scanner": "repobility-ast-engine", "fingerprint": "65ae27bd3a28960df282683011a590ecf7e4b2437e7c0285d753b2f9163a1c6b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|65ae27bd3a28960df282683011a590ecf7e4b2437e7c0285d753b2f9163a1c6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-pathspec/fuzz_pathspec.py"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_one_input: Test function `test_one_input` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101358, "scanner": "repobility-ast-engine", "fingerprint": "28c9d5b7a33d6ee53ea0fcd7289e6d7cea1ea33bc32fa8a022b276cee9e1356f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|28c9d5b7a33d6ee53ea0fcd7289e6d7cea1ea33bc32fa8a022b276cee9e1356f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/tomlkit/fuzz_dumps.py"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_decoding: Test function `test_decoding` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101356, "scanner": "repobility-ast-engine", "fingerprint": "20d4a2774356228a6909d5a0daf0023f7974c1763e990e191bc10ee39cefe2f5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|20d4a2774356228a6909d5a0daf0023f7974c1763e990e191bc10ee39cefe2f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pyjwt/fuzz_jwt.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_one: Test function `test_one` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101355, "scanner": "repobility-ast-engine", "fingerprint": "9ccbccce662c300f5b6551ae6f35ee77d42547f2c5e4091fdfef1888220973d1", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9ccbccce662c300f5b6551ae6f35ee77d42547f2c5e4091fdfef1888220973d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpretty/fuzz_httpretty_e2e.py"}, "region": {"startLine": 22}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_pull_request_exists: Test function `test_pull_request_exists` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101333, "scanner": "repobility-ast-engine", "fingerprint": "080ea9d5c4be99e6079c4eb745d4032b807d2a8b611e90fa5aac66df8cf394c3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|080ea9d5c4be99e6079c4eb745d4032b807d2a8b611e90fa5aac66df8cf394c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/repo_manager_test.py"}, "region": {"startLine": 180}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_diff_exists: Test function `test_diff_exists` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101332, "scanner": "repobility-ast-engine", "fingerprint": "7440b433a98bbdc475999120cc0e3cc380fc64ad2bc8cecd4023aa83c05fc595", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7440b433a98bbdc475999120cc0e3cc380fc64ad2bc8cecd4023aa83c05fc595"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/repo_manager_test.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_clone_with_username: Test function `test_clone_with_username` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101331, "scanner": "repobility-ast-engine", "fingerprint": "6de7f727385234b6a141d8098c9fc185410af36f325f739b275e519ac382a8e0", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6de7f727385234b6a141d8098c9fc185410af36f325f739b275e519ac382a8e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/repo_manager_test.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_binary_string: Test function `test_binary_string` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101330, "scanner": "repobility-ast-engine", "fingerprint": "5a2c7a68b9f20335b02bc59bb4dbc0704aff4ff262b9419ad24ac561db995561", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5a2c7a68b9f20335b02bc59bb4dbc0704aff4ff262b9419ad24ac561db995561"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/utils_test.py"}, "region": {"startLine": 126}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_string: Test function `test_string` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101329, "scanner": "repobility-ast-engine", "fingerprint": "504ca227b6ede443302197caeb3b195bd1db45b12307c132343d068af2a4e0d1", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|504ca227b6ede443302197caeb3b195bd1db45b12307c132343d068af2a4e0d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/utils_test.py"}, "region": {"startLine": 118}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.external_project_path` used but never assigned in __init__: Method `test_init_external_project` of class `ProjectTest` reads `self.external_project_path`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101325, "scanner": "repobility-ast-engine", "fingerprint": "9914065cae775fd007e8a8725cdb6aa798c1504eafe97e81620b33e24117c57b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9914065cae775fd007e8a8725cdb6aa798c1504eafe97e81620b33e24117c57b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 184}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertEqual` used but never assigned in __init__: Method `test_init_external_project` of class `ProjectTest` reads `self.assertEqual`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101324, "scanner": "repobility-ast-engine", "fingerprint": "1378fe7cd959cfb7a21952b559c09ae0112d63110f5b03736198b326ad11ab3e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1378fe7cd959cfb7a21952b559c09ae0112d63110f5b03736198b326ad11ab3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 184}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.project_name` used but never assigned in __init__: Method `test_init_external_project` of class `ProjectTest` reads `self.project_name`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101323, "scanner": "repobility-ast-engine", "fingerprint": "77b90dbb844f69726a45012030b4ed12a7bf2dfd66060f83837b62d7c4e2af39", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|77b90dbb844f69726a45012030b4ed12a7bf2dfd66060f83837b62d7c4e2af39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 183}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertEqual` used but never assigned in __init__: Method `test_init_external_project` of class `ProjectTest` reads `self.assertEqual`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101322, "scanner": "repobility-ast-engine", "fingerprint": "41afc4ffbeb2334834f343008181ad0c898a6d3636b72a3014c0ea4984838ff2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|41afc4ffbeb2334834f343008181ad0c898a6d3636b72a3014c0ea4984838ff2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 183}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.setUpPyfakefs` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.setUpPyfakefs`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101321, "scanner": "repobility-ast-engine", "fingerprint": "097fdaa133775a0311d4cceb005bf9c38f5e42f077d04a14e2a35986b80b24b4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|097fdaa133775a0311d4cceb005bf9c38f5e42f077d04a14e2a35986b80b24b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 179}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.external_project_path` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.external_project_path`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101320, "scanner": "repobility-ast-engine", "fingerprint": "f1ee3e630be2c1acea0c978197a523a677148ba1e8b9425257360a08befb27bf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f1ee3e630be2c1acea0c978197a523a677148ba1e8b9425257360a08befb27bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 177}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.project_name` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.project_name`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101319, "scanner": "repobility-ast-engine", "fingerprint": "b8913e21c81280f59d4cf515e852efc7f312943db13492aabd7cacd9e852e44f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b8913e21c81280f59d4cf515e852efc7f312943db13492aabd7cacd9e852e44f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.project_name` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.project_name`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101318, "scanner": "repobility-ast-engine", "fingerprint": "c3b100241740c159fc892de58e4c66c1aadf79a6974bd3bbe3df86886ae2a20c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c3b100241740c159fc892de58e4c66c1aadf79a6974bd3bbe3df86886ae2a20c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 175}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.external_project` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.external_project`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101317, "scanner": "repobility-ast-engine", "fingerprint": "75dbacf0bffd5f1dbfa6f0e39bbe83d6b9adaf91055cb9367ce731e87f9b4c54", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|75dbacf0bffd5f1dbfa6f0e39bbe83d6b9adaf91055cb9367ce731e87f9b4c54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 177}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.external_project_path` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.external_project_path`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101316, "scanner": "repobility-ast-engine", "fingerprint": "fa72b960e937d0a5735323ce33ce75bddfb29467d176becb07abb00efcf9de01", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fa72b960e937d0a5735323ce33ce75bddfb29467d176becb07abb00efcf9de01"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.internal_project` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.internal_project`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101315, "scanner": "repobility-ast-engine", "fingerprint": "bba017a316fb7645ae16c4655309e959aac38664d99dc3e6dd854b8877191ffa", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bba017a316fb7645ae16c4655309e959aac38664d99dc3e6dd854b8877191ffa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 175}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.project_name` used but never assigned in __init__: Method `setUp` of class `ProjectTest` reads `self.project_name`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101314, "scanner": "repobility-ast-engine", "fingerprint": "fde8d877145853a774497c0faefbd51f2414dd4589a57ab569c4fcbf10ecb1ab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fde8d877145853a774497c0faefbd51f2414dd4589a57ab569c4fcbf10ecb1ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 174}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._verify_templated_files` used but never assigned in __init__: Method `test_generate_swift_project` of class `GenerateImplTest` reads `self._verify_templated_files`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101313, "scanner": "repobility-ast-engine", "fingerprint": "954d0b3400259f9b8661a3b4bbbcb682559b573528f12d6a6758243f0715b595", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|954d0b3400259f9b8661a3b4bbbcb682559b573528f12d6a6758243f0715b595"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 164}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._verify_templated_files` used but never assigned in __init__: Method `test_generate_external_project` of class `GenerateImplTest` reads `self._verify_templated_files`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101312, "scanner": "repobility-ast-engine", "fingerprint": "285fe48059b2e58d42927a6069770cc973e2cad3f37a0f1e18bd6478bd9bcd4e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|285fe48059b2e58d42927a6069770cc973e2cad3f37a0f1e18bd6478bd9bcd4e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 156}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._verify_templated_files` used but never assigned in __init__: Method `test_generate_oss_fuzz_project` of class `GenerateImplTest` reads `self._verify_templated_files`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101311, "scanner": "repobility-ast-engine", "fingerprint": "d31c090569e50d4cb1da508d6555b38eb55b21a8bf13f8069fe282e4d538d340", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d31c090569e50d4cb1da508d6555b38eb55b21a8bf13f8069fe282e4d538d340"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 143}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertEqual` used but never assigned in __init__: Method `_verify_templated_files` of class `GenerateImplTest` reads `self.assertEqual`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101310, "scanner": "repobility-ast-engine", "fingerprint": "25a661e5d9eb2960da8587ed2b4db2a255074afccd4f46f01963155730b81ae8", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|25a661e5d9eb2960da8587ed2b4db2a255074afccd4f46f01963155730b81ae8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 135}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.fs` used but never assigned in __init__: Method `setUp` of class `GenerateImplTest` reads `self.fs`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101309, "scanner": "repobility-ast-engine", "fingerprint": "0fd49f7d247892aa22ae2ed58f29a9a177f6a1d390a9fbf6e46c597a9dd3722d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0fd49f7d247892aa22ae2ed58f29a9a177f6a1d390a9fbf6e46c597a9dd3722d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 122}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.setUpPyfakefs` used but never assigned in __init__: Method `setUp` of class `GenerateImplTest` reads `self.setUpPyfakefs`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101308, "scanner": "repobility-ast-engine", "fingerprint": "d46bdd75f65705544a3a4510bcb53c50de066a62147cc07e2a906d1ebb0c21b8", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d46bdd75f65705544a3a4510bcb53c50de066a62147cc07e2a906d1ebb0c21b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 121}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.maxDiff` used but never assigned in __init__: Method `setUp` of class `GenerateImplTest` reads `self.maxDiff`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101307, "scanner": "repobility-ast-engine", "fingerprint": "e1faf6ad156d7c6564589497e5753ed7f528140ef2e9b6b52c30bad11c925861", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e1faf6ad156d7c6564589497e5753ed7f528140ef2e9b6b52c30bad11c925861"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertTrue` used but never assigned in __init__: Method `test_external_project` of class `BuildImageImplTest` reads `self.assertTrue`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101306, "scanner": "repobility-ast-engine", "fingerprint": "03f424748d0464bc34a1ae3c3e03f780014f71f2371c40abc45cfdd7bd04c6a8", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|03f424748d0464bc34a1ae3c3e03f780014f71f2371c40abc45cfdd7bd04c6a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 106}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertTrue` used but never assigned in __init__: Method `test_oss_fuzz_project` of class `BuildImageImplTest` reads `self.assertTrue`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101305, "scanner": "repobility-ast-engine", "fingerprint": "8c014f94cb6f47b8fcceb9940c5c8f1ead0b2ac93abf7e38be5c5f9677a83bf4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8c014f94cb6f47b8fcceb9940c5c8f1ead0b2ac93abf7e38be5c5f9677a83bf4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertTrue` used but never assigned in __init__: Method `test_base_image` of class `BuildImageImplTest` reads `self.assertTrue`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101304, "scanner": "repobility-ast-engine", "fingerprint": "e499235afaa9cd43b899141274ba6260918c7364e7806273f0fb18da97e4fd1a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e499235afaa9cd43b899141274ba6260918c7364e7806273f0fb18da97e4fd1a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertTrue` used but never assigned in __init__: Method `test_pull` of class `BuildImageImplTest` reads `self.assertTrue`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101303, "scanner": "repobility-ast-engine", "fingerprint": "a50cef9d1ae878498c5bdde1cc8f9429b5fa14a543716d987288113723640eea", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a50cef9d1ae878498c5bdde1cc8f9429b5fa14a543716d987288113723640eea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertIn` used but never assigned in __init__: Method `test_no_cache` of class `BuildImageImplTest` reads `self.assertIn`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101302, "scanner": "repobility-ast-engine", "fingerprint": "e8c198a89c3b3ac3dd118e5bb6b7491664bfb392a16750d03189be411073559b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e8c198a89c3b3ac3dd118e5bb6b7491664bfb392a16750d03189be411073559b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.assertTrue` used but never assigned in __init__: Method `test_base_runner_debug` of class `ShellTest` reads `self.assertTrue`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 101301, "scanner": "repobility-ast-engine", "fingerprint": "75757450925aa2b0bace4454ee1a795801922431b7f3a11d5e4958ce08c4e92c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|75757450925aa2b0bace4454ee1a795801922431b7f3a11d5e4958ce08c4e92c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 45}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_generate_swift_project: Test function `test_generate_swift_project` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101300, "scanner": "repobility-ast-engine", "fingerprint": "a63f07e05b9c02e48bc27554eef841b22fcac2b590280d31e7ed138cd83248e3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a63f07e05b9c02e48bc27554eef841b22fcac2b590280d31e7ed138cd83248e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 161}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_generate_external_project: Test function `test_generate_external_project` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101299, "scanner": "repobility-ast-engine", "fingerprint": "00da769e4d9977e9a5bfe5e39062b28f0afecbcf0090fafa2fa6591eb85d2bab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|00da769e4d9977e9a5bfe5e39062b28f0afecbcf0090fafa2fa6591eb85d2bab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 148}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_generate_oss_fuzz_project: Test function `test_generate_oss_fuzz_project` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 101298, "scanner": "repobility-ast-engine", "fingerprint": "06a8fcf5e0a9d43398ac02099bfda35e30465ca073cf2013d3afb86aa9ef417e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|06a8fcf5e0a9d43398ac02099bfda35e30465ca073cf2013d3afb86aa9ef417e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/helper_test.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 100955, "scanner": "repobility-docker", "fingerprint": "93fac3c0567bf413bf6f23c039f2634d6d646765dd66d890f9ced52240430ecf", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|93fac3c0567bf413bf6f23c039f2634d6d646765dd66d890f9ced52240430ecf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/unblob/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 99937, "scanner": "repobility-docker", "fingerprint": "4a7f2fb84932ee01df997c43fa6afab29d9fff833550ad261aff67b0b1fd4c64", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|4a7f2fb84932ee01df997c43fa6afab29d9fff833550ad261aff67b0b1fd4c64"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/orjson/Dockerfile"}, "region": {"startLine": 25}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 99656, "scanner": "repobility-docker", "fingerprint": "91876b6114b2914aedb04108db2cd2b3c307ea09295c7989a4370ab2d4eb2ef2", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|91876b6114b2914aedb04108db2cd2b3c307ea09295c7989a4370ab2d4eb2ef2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nbclassic/Dockerfile"}, "region": {"startLine": 18}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 99040, "scanner": "repobility-docker", "fingerprint": "bd76340454a23991f9ab851d463ff59b581edfb7c2c9785ebe17db53cd85ed6e", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|bd76340454a23991f9ab851d463ff59b581edfb7c2c9785ebe17db53cd85ed6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/libcst/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 98824, "scanner": "repobility-docker", "fingerprint": "2632a4f7ac305e6f0897bfd170c920a073c3859db30fbd837ff2ad19eb121f0d", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|2632a4f7ac305e6f0897bfd170c920a073c3859db30fbd837ff2ad19eb121f0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jsch/Dockerfile"}, "region": {"startLine": 50}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 97850, "scanner": "repobility-docker", "fingerprint": "005ceef6215fbcd8889fbd8954ec9799c843010aa0153465860527fcd5e22715", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|005ceef6215fbcd8889fbd8954ec9799c843010aa0153465860527fcd5e22715"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cryptography/Dockerfile"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 97781, "scanner": "repobility-docker", "fingerprint": "1e41f2b4d26e5c342b94c0b7da84b9988525effae12db8a9bbbaf8f1c527b6c3", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|1e41f2b4d26e5c342b94c0b7da84b9988525effae12db8a9bbbaf8f1c527b6c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/connectedhomeip/Dockerfile"}, "region": {"startLine": 27}}}]}, {"ruleId": "DKR006", "level": "error", "message": {"text": "Dockerfile pipes a remote script into a shell"}, "properties": {"repobilityId": 97756, "scanner": "repobility-docker", "fingerprint": "aa42a636b57fad89884d3745d20ac756b3a50010b288d9751a6cd676b4f32f77", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "RUN instruction contains curl/wget piped into a shell.", "evidence": {"rule_id": "DKR006", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|aa42a636b57fad89884d3745d20ac756b3a50010b288d9751a6cd676b4f32f77"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cloud-custodian/Dockerfile"}, "region": {"startLine": 20}}}]}, {"ruleId": "SEC102", "level": "error", "message": {"text": "[SEC102] Jackson default typing / polymorphic deserialization enabled: Jackson with default typing enabled allows attacker-supplied JSON to instantiate arbitrary classes. Pattern behind many SpringBoot RCEs."}, "properties": {"repobilityId": 97183, "scanner": "repobility-threat-engine", "fingerprint": "5688bd695ccd3feca328e006d78773e34900f9c8d87ca89a1f21cf038f255b4a", "category": "deserialization", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "@JsonTypeInfo(include = JsonTypeInfo.As.PROPERTY, use = JsonTypeInfo.Id.CLASS", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC102", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|121|sec102"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatypes-collections/GuavaDeserializerFuzzer.java"}, "region": {"startLine": 121}}}]}, {"ruleId": "SEC102", "level": "error", "message": {"text": "[SEC102] Jackson default typing / polymorphic deserialization enabled: Jackson with default typing enabled allows attacker-supplied JSON to instantiate arbitrary classes. Pattern behind many SpringBoot RCEs."}, "properties": {"repobilityId": 97182, "scanner": "repobility-threat-engine", "fingerprint": "5550f7e680d76b475d6cbf646b4387bc297c1611724d697ea986b6a847d56c1b", "category": "deserialization", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "@JsonTypeInfo(use = JsonTypeInfo.Id.CLASS", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC102", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|173|sec102"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatypes-collections/EclipseCollectionsSerializerFuzzer.java"}, "region": {"startLine": 173}}}]}, {"ruleId": "SEC102", "level": "error", "message": {"text": "[SEC102] Jackson default typing / polymorphic deserialization enabled: Jackson with default typing enabled allows attacker-supplied JSON to instantiate arbitrary classes. Pattern behind many SpringBoot RCEs."}, "properties": {"repobilityId": 97181, "scanner": "repobility-threat-engine", "fingerprint": "0ee84483d7df27fd2625b42ddd3a8e7aa409bd3fd8d5106156d501f4df10dda0", "category": "deserialization", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "@JsonTypeInfo(\n        use = JsonTypeInfo.Id.CLASS", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC102", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|117|sec102"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jackson-datatype-joda/JodaDeserializerFuzzer.java"}, "region": {"startLine": 117}}}]}, {"ruleId": "MINED036", "level": "error", "message": {"text": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping."}, "properties": {"repobilityId": 97170, "scanner": "repobility-threat-engine", "fingerprint": "cd7cf34a6ad1c9de23f4f5433b88d3b11f9e1f68868cace904a79015413dbf7a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-os-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347982+00:00", "triaged_in_corpus": 15, "observations_count": 2221, "ai_coder_pattern_id": 117}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cd7cf34a6ad1c9de23f4f5433b88d3b11f9e1f68868cace904a79015413dbf7a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/github_scarecrow/shell_injection_poc_fuzzer.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "SEC135", "level": "error", "message": {"text": "[SEC135] Auth/permission check missing on AI-generated endpoint: Mutating HTTP endpoint generated by an AI agent without an auth decorator or middleware. The number-one production-incident pattern we see in AI-generated SaaS code: the AI builds the route, builds the handler, and forgets to wire the auth check that the rest of the codebase uses. CWE-862 (missing authorization). High-severity because the route is fully functional, just unprotected \u2014 attackers can call it directly."}, "properties": {"repobilityId": 97169, "scanner": "repobility-threat-engine", "fingerprint": "3784cc2c7e1c4a1a5714c0e87e69028a8352fc47afe52f19b31578688f288d52", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "@app.route(\"/json\", methods=[\"POST\"])", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC135", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|3784cc2c7e1c4a1a5714c0e87e69028a8352fc47afe52f19b31578688f288d52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/fuzz_json.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "SEC027", "level": "error", "message": {"text": "[SEC027] XML External Entity (XXE) \u2014 Node.js xml parsers: Node.js XML parsers can expand external entities if not configured. libxmljs in particular has had XXE CVEs."}, "properties": {"repobilityId": 97167, "scanner": "repobility-threat-engine", "fingerprint": "a165d065ff7f14fc6a974e8c91760527c31985d5a4231a48d81b0eac0bf42083", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new XMLParser()", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC027", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a165d065ff7f14fc6a974e8c91760527c31985d5a4231a48d81b0eac0bf42083"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/fast-xml-parser/fuzz.js"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 97161, "scanner": "repobility-threat-engine", "fingerprint": "9ceedc56164cb089816a7d4b524d1e25b2e31b33e643beafbe83e2cb3b5b6a90", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9ceedc56164cb089816a7d4b524d1e25b2e31b33e643beafbe83e2cb3b5b6a90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/digest/fuzz_digest.py"}, "region": {"startLine": 29}}}]}, {"ruleId": "SEC024", "level": "error", "message": {"text": "[SEC024] XML External Entity (XXE) \u2014 Java parser default: Java XML parsers accept external entity references by default. An attacker can craft XML input that reads server files (file://), exfiltrates data via DNS, or causes denial of service via the 'billion laughs' attack."}, "properties": {"repobilityId": 97144, "scanner": "repobility-threat-engine", "fingerprint": "cee87fd6e1a4fe5fb30bd0c7aceaf0d20a48f96dd170a16cafef2bbd328188d1", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "DocumentBuilderFactory.newInstance(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC024", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|cee87fd6e1a4fe5fb30bd0c7aceaf0d20a48f96dd170a16cafef2bbd328188d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hamcrest/HamcrestFuzzer.java"}, "region": {"startLine": 273}}}]}, {"ruleId": "SEC024", "level": "error", "message": {"text": "[SEC024] XML External Entity (XXE) \u2014 Java parser default: Java XML parsers accept external entity references by default. An attacker can craft XML input that reads server files (file://), exfiltrates data via DNS, or causes denial of service via the 'billion laughs' attack."}, "properties": {"repobilityId": 97143, "scanner": "repobility-threat-engine", "fingerprint": "de0cfd4d4ae74e6f1a4819a8a6dfff3d0363be801339ef3a9f3f881a1d6d7ffe", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "DocumentBuilderFactory.newInstance(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC024", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|de0cfd4d4ae74e6f1a4819a8a6dfff3d0363be801339ef3a9f3f881a1d6d7ffe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/dom4j/DOMReaderFuzzer.java"}, "region": {"startLine": 36}}}]}, {"ruleId": "SEC024", "level": "error", "message": {"text": "[SEC024] XML External Entity (XXE) \u2014 Java parser default: Java XML parsers accept external entity references by default. An attacker can craft XML input that reads server files (file://), exfiltrates data via DNS, or causes denial of service via the 'billion laughs' attack."}, "properties": {"repobilityId": 97142, "scanner": "repobility-threat-engine", "fingerprint": "485ab2b09820c90731d9881cfca6b533e40e52b6a41842ec29f37f39aaaada4c", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "DocumentBuilderFactory.newInstance(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC024", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|485ab2b09820c90731d9881cfca6b533e40e52b6a41842ec29f37f39aaaada4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-jxpath/JXPathFuzzer.java"}, "region": {"startLine": 39}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 97137, "scanner": "repobility-threat-engine", "fingerprint": "5d4d6fe2adce2d6bf3fe3cafa371649b66543a84dbb45a10df1f63bc12d2a319", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|5d4d6fe2adce2d6bf3fe3cafa371649b66543a84dbb45a10df1f63bc12d2a319"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/g-api-resumable-media-python/fuzz_uploader.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 97136, "scanner": "repobility-threat-engine", "fingerprint": "5702008e9856f17663f1ca47feaee06b14790705e35c7f641c126b61f5634c32", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|5702008e9856f17663f1ca47feaee06b14790705e35c7f641c126b61f5634c32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/bearssl/build.sh"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 97135, "scanner": "repobility-threat-engine", "fingerprint": "b8c170585db91a38aa66c6fea4bbf0135bebab6d19744878042844760c13f18d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b8c170585db91a38aa66c6fea4bbf0135bebab6d19744878042844760c13f18d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/ansible/fuzz_encrypt.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 97130, "scanner": "repobility-threat-engine", "fingerprint": "b25c74e1536b19da51a1970b9dd827a8f642b2fac877c7484024d6e63e9751cb", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "tempFile.delete();", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|b25c74e1536b19da51a1970b9dd827a8f642b2fac877c7484024d6e63e9751cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-configuration/XMLConfigurationLoadFuzzer.java"}, "region": {"startLine": 43}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 97129, "scanner": "repobility-threat-engine", "fingerprint": "fe72d033f5827b6442ea6cd43c8e39e369f5e8c3967bf953adc000178e191c6c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "checksum.update(byteArray, 0, byteArray.length);", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|fe72d033f5827b6442ea6cd43c8e39e369f5e8c3967bf953adc000178e191c6c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-codec/ChecksumFuzzer.java"}, "region": {"startLine": 47}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 97128, "scanner": "repobility-threat-engine", "fingerprint": "55f84cfd1aafbe7a5958dbd499b4195ea4034e9d32e4842fad90cba8571c4d04", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "sha.Update(data, size);", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|55f84cfd1aafbe7a5958dbd499b4195ea4034e9d32e4842fad90cba8571c4d04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/angle/fuzz_sha1.cc"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED017", "level": "error", "message": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "properties": {"repobilityId": 97123, "scanner": "repobility-threat-engine", "fingerprint": "156148c94c696e9f074ff7fcae968a4b6810394c2da1c6b794cab90adf43e43c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347937+00:00", "triaged_in_corpus": 15, "observations_count": 77748, "ai_coder_pattern_id": 132}, "scanner": "repobility-threat-engine", "correlation_key": "fp|156148c94c696e9f074ff7fcae968a4b6810394c2da1c6b794cab90adf43e43c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/target.cpp"}, "region": {"startLine": 26}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 97122, "scanner": "repobility-threat-engine", "fingerprint": "1d2877c6e110928cd491bd584694be2b4b87b9b9039f88091a31bce704d7fe93", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "execSync(shellQuote", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|1d2877c6e110928cd491bd584694be2b4b87b9b9039f88091a31bce704d7fe93"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/experimental/SystemSan/PoEs/node-shell-quote-v1.7.3/target.js"}, "region": {"startLine": 29}}}]}, {"ruleId": "SEC078", "level": "error", "message": {"text": "[SEC078] Python: requests without timeout: requests.get/post without a timeout will hang indefinitely on a non-responsive server, causing thread exhaustion and ReDoS. Ported from bandit B113 (Apache-2.0). NOTE: this regex is heuristic; a real AST check is preferred for accuracy."}, "properties": {"repobilityId": 97110, "scanner": "repobility-threat-engine", "fingerprint": "8c2e8a0763ea48aa9034bbdfbd893b476f90bbb190c997f9cd0230af3056b7b0", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "requests.get(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC078", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|8c2e8a0763ea48aa9034bbdfbd893b476f90bbb190c997f9cd0230af3056b7b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/httpretty/fuzz_httpretty_e2e.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "SEC078", "level": "error", "message": {"text": "[SEC078] Python: requests without timeout: requests.get/post without a timeout will hang indefinitely on a non-responsive server, causing thread exhaustion and ReDoS. Ported from bandit B113 (Apache-2.0). NOTE: this regex is heuristic; a real AST check is preferred for accuracy."}, "properties": {"repobilityId": 97109, "scanner": "repobility-threat-engine", "fingerprint": "a3efa6fd8a7f0eeb0e9ce6544e69f29aecbb877384883bab840688bbc40ef1e0", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "requests.get(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC078", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a3efa6fd8a7f0eeb0e9ce6544e69f29aecbb877384883bab840688bbc40ef1e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/pr_helper.py"}, "region": {"startLine": 192}}}]}, {"ruleId": "SEC078", "level": "error", "message": {"text": "[SEC078] Python: requests without timeout: requests.get/post without a timeout will hang indefinitely on a non-responsive server, causing thread exhaustion and ReDoS. Ported from bandit B113 (Apache-2.0). NOTE: this regex is heuristic; a real AST check is preferred for accuracy."}, "properties": {"repobilityId": 97108, "scanner": "repobility-threat-engine", "fingerprint": "2a21b533454fd32719e0620345dada0a2e9e9fe59e70e02ca5c7f1c1c866ecb6", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "requests.get(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC078", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|2a21b533454fd32719e0620345dada0a2e9e9fe59e70e02ca5c7f1c1c866ecb6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/github_actions/github_api.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 97106, "scanner": "repobility-threat-engine", "fingerprint": "fed680b7bd78494e646a599f1ccaa2819a4291f097e755a8748e2613876e22c4", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(\n        s", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|fed680b7bd78494e646a599f1ccaa2819a4291f097e755a8748e2613876e22c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/get_coverage.py"}, "region": {"startLine": 97}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 97105, "scanner": "repobility-threat-engine", "fingerprint": "24682cb981424e7f8f672a475a32efceae9b6af88b2c7ab39202a6c81913f6b6", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(s", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|24682cb981424e7f8f672a475a32efceae9b6af88b2c7ab39202a6c81913f6b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/gsutil/__init__.py"}, "region": {"startLine": 62}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 97104, "scanner": "repobility-threat-engine", "fingerprint": "3c2528e1b7756d80df6640b8a60d5b441b157de8e9874755cb5db64b2c4a6adc", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(r", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|3c2528e1b7756d80df6640b8a60d5b441b157de8e9874755cb5db64b2c4a6adc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/cifuzz/filestore/github_actions/github_api.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED034", "level": "error", "message": {"text": "[MINED034] Python Subprocess Shell True: subprocess(..., shell=True) enables command injection."}, "properties": {"repobilityId": 97101, "scanner": "repobility-threat-engine", "fingerprint": "f2f40976cb3fa5611c51c5a3e2e7fdef68bd38e91d98e4077104d7e9d6922a96", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-subprocess-shell-true", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347977+00:00", "triaged_in_corpus": 15, "observations_count": 3478, "ai_coder_pattern_id": 118}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f2f40976cb3fa5611c51c5a3e2e7fdef68bd38e91d98e4077104d7e9d6922a96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/integrity_validator_run_tests.py"}, "region": {"startLine": 300}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 97093, "scanner": "repobility-threat-engine", "fingerprint": "27aa8f10ad9c6445af9104b5554f01d558e7508e5a9ed2e111cec817378a7df1", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open('fuzz_one_input", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|26|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/nfstream/pcap_fuzzer.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 97092, "scanner": "repobility-threat-engine", "fingerprint": "4e3ad914380f58ade775c1665040f250caa2255dafe4e906bb3847c994de8705", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "Open((void *)&gUData, stub_input", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|28|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/giflib/dgif_fuzz_common.cc"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 97091, "scanner": "repobility-threat-engine", "fingerprint": "e49d13186f078ca6c77b91a6daeeb145c380cee3fd6bc5180b4664ce807720a8", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open(sys.argv[i], 'rb') as input", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|168|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/profraw_update.py"}, "region": {"startLine": 168}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 97081, "scanner": "repobility-threat-engine", "fingerprint": "9908a91ee3e92f086ef2c976b3eec87999b5fc84642f5f9603b30e716567c172", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9908a91ee3e92f086ef2c976b3eec87999b5fc84642f5f9603b30e716567c172"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/chronos/integrity_validator_check_replay.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 97080, "scanner": "repobility-threat-engine", "fingerprint": "e647dd1dbfb5b437e32fbeb94c6e5115b1731222ec684dc4726063a43e73816b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|e647dd1dbfb5b437e32fbeb94c6e5115b1731222ec684dc4726063a43e73816b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-runner/generate_differential_cov_report.py"}, "region": {"startLine": 50}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 97079, "scanner": "repobility-threat-engine", "fingerprint": "7522a78d632b9cc1451500881ffac36dc152c9973ec3bfc8a99d56b0e470d371", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7522a78d632b9cc1451500881ffac36dc152c9973ec3bfc8a99d56b0e470d371"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/sanitizers/pysecsan/pysecsan/yaml_deserialization.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED016", "level": "error", "message": {"text": "[MINED016] Go Error Ignored: _, err := fn() with err not checked. Go anti-pattern."}, "properties": {"repobilityId": 97065, "scanner": "repobility-threat-engine", "fingerprint": "f164444911b160175018bb8e208124be87abdd908b9452cb7ea5c6597e218f68", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-error-ignored", "owasp": null, "cwe_ids": ["CWE-754"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347935+00:00", "triaged_in_corpus": 15, "observations_count": 83036, "ai_coder_pattern_id": 107}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f164444911b160175018bb8e208124be87abdd908b9452cb7ea5c6597e218f68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/cel-go/fuzz_eval.go"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED016", "level": "error", "message": {"text": "[MINED016] Go Error Ignored: _, err := fn() with err not checked. Go anti-pattern."}, "properties": {"repobilityId": 97064, "scanner": "repobility-threat-engine", "fingerprint": "d9de321d1d4c064896bcf4b6ed18fe3b1eb3b3da238df78f6205bb4f248e1b3e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-error-ignored", "owasp": null, "cwe_ids": ["CWE-754"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347935+00:00", "triaged_in_corpus": 15, "observations_count": 83036, "ai_coder_pattern_id": 107}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d9de321d1d4c064896bcf4b6ed18fe3b1eb3b3da238df78f6205bb4f248e1b3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc2.go"}, "region": {"startLine": 189}}}]}, {"ruleId": "MINED016", "level": "error", "message": {"text": "[MINED016] Go Error Ignored: _, err := fn() with err not checked. Go anti-pattern."}, "properties": {"repobilityId": 97063, "scanner": "repobility-threat-engine", "fingerprint": "cea5c1ad389b25106db0aa5a959ecc3813e904f72f8f6fbbe9e4bff6a796a8c2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-error-ignored", "owasp": null, "cwe_ids": ["CWE-754"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347935+00:00", "triaged_in_corpus": 15, "observations_count": 83036, "ai_coder_pattern_id": 107}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cea5c1ad389b25106db0aa5a959ecc3813e904f72f8f6fbbe9e4bff6a796a8c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc.go"}, "region": {"startLine": 50}}}]}, {"ruleId": "SEC093", "level": "error", "message": {"text": "[SEC093] Go: exec.Command with non-literal: exec.Command(<var>) \u2014 variable command name allows command injection. Ported from gosec G204 (Apache-2.0)."}, "properties": {"repobilityId": 97062, "scanner": "repobility-threat-engine", "fingerprint": "720ab8a30c5675d70330b15d0fd6ec666159e4e3dd8cb2e2b14b0124613448d8", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec.Command(bin,", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC093", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|720ab8a30c5675d70330b15d0fd6ec666159e4e3dd8cb2e2b14b0124613448d8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc2.go"}, "region": {"startLine": 174}}}]}, {"ruleId": "SEC093", "level": "error", "message": {"text": "[SEC093] Go: exec.Command with non-literal: exec.Command(<var>) \u2014 variable command name allows command injection. Ported from gosec G204 (Apache-2.0)."}, "properties": {"repobilityId": 97061, "scanner": "repobility-threat-engine", "fingerprint": "9327857d6e7fa47839813f88f8dcdef52052613edefb3e8488ba89f67214157e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec.Command(bin,", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC093", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9327857d6e7fa47839813f88f8dcdef52052613edefb3e8488ba89f67214157e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/jcc/jcc.go"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED012", "level": "error", "message": {"text": "[MINED012] Curl Pipe Bash: curl ... | sh / bash \u2014 runs unverified network code."}, "properties": {"repobilityId": 97060, "scanner": "repobility-threat-engine", "fingerprint": "c5900ef1ba2acc371cdb7272df969b8f24e1b1edd24b0ee3722b07664b7b65ae", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "curl-pipe-bash", "owasp": "A08:2021", "cwe_ids": ["CWE-494"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347926+00:00", "triaged_in_corpus": 15, "observations_count": 135001, "ai_coder_pattern_id": 25}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c5900ef1ba2acc371cdb7272df969b8f24e1b1edd24b0ee3722b07664b7b65ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/install_rust.sh"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED033", "level": "error", "message": {"text": "[MINED033] Go Recover Without Log: defer func() { recover() }() that silently swallows panic."}, "properties": {"repobilityId": 97046, "scanner": "repobility-threat-engine", "fingerprint": "cc2a30142f341997d6a3a0b532d57c3902f94d4b6a09cd76c92a2596f0355bb2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-recover-without-log", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347975+00:00", "triaged_in_corpus": 15, "observations_count": 3808, "ai_coder_pattern_id": 109}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cc2a30142f341997d6a3a0b532d57c3902f94d4b6a09cd76c92a2596f0355bb2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/golang/aes_fuzzer.go"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED033", "level": "error", "message": {"text": "[MINED033] Go Recover Without Log: defer func() { recover() }() that silently swallows panic."}, "properties": {"repobilityId": 97045, "scanner": "repobility-threat-engine", "fingerprint": "68b28e715f4251ec1634971ca73e2b15648af8b8380a5157a445365aa244281c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-recover-without-log", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347975+00:00", "triaged_in_corpus": 15, "observations_count": 3808, "ai_coder_pattern_id": 109}, "scanner": "repobility-threat-engine", "correlation_key": "fp|68b28e715f4251ec1634971ca73e2b15648af8b8380a5157a445365aa244281c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder/ossfuzz_coverage_runner.go"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED033", "level": "error", "message": {"text": "[MINED033] Go Recover Without Log: defer func() { recover() }() that silently swallows panic."}, "properties": {"repobilityId": 97044, "scanner": "repobility-threat-engine", "fingerprint": "5c5b08751d04f4ae51a4aadd872b907fa458a4817da56dd34980ad1f6df34d9a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "go-recover-without-log", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["go"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347975+00:00", "triaged_in_corpus": 15, "observations_count": 3808, "ai_coder_pattern_id": 109}, "scanner": "repobility-threat-engine", "correlation_key": "fp|5c5b08751d04f4ae51a4aadd872b907fa458a4817da56dd34980ad1f6df34d9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/base-images/base-builder-go/ossfuzz_coverage_runner.go"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.PERSONAL_ACCESS_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.PERSONAL_ACCESS_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 101468, "scanner": "repobility-supply-chain", "fingerprint": "8d1061a233ec00693f675125758854514d997c0f0240b09d23878ea828a5f43a", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|8d1061a233ec00693f675125758854514d997c0f0240b09d23878ea828a5f43a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/cflite_pr.yml"}, "region": {"startLine": 46}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.PERSONAL_ACCESS_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.PERSONAL_ACCESS_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 101467, "scanner": "repobility-supply-chain", "fingerprint": "576b83d7c7412d887e015dfd79455cb2bbfcb310f25b5a7401a645ab55e4c4b7", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|576b83d7c7412d887e015dfd79455cb2bbfcb310f25b5a7401a645ab55e4c4b7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/cflite_pr.yml"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101387, "scanner": "repobility-ast-engine", "fingerprint": "77de036d0e0b59f78d7852573099532f54b3e319e4712afbb7e327150dfaf5a6", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|77de036d0e0b59f78d7852573099532f54b3e319e4712afbb7e327150dfaf5a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/olefile/fuzz_reader.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101374, "scanner": "repobility-ast-engine", "fingerprint": "f81ba8181f32da2d7fc8cad88757292559ceb1213ef8478631c2667f2166bde8", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f81ba8181f32da2d7fc8cad88757292559ceb1213ef8478631c2667f2166bde8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/psycopg2/fuzz_sql.py"}, "region": {"startLine": 45}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101373, "scanner": "repobility-ast-engine", "fingerprint": "9086fa4f75507d3148fb7ba14b772ccb8bf34be4c1f358b63b943b440f5f6016", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9086fa4f75507d3148fb7ba14b772ccb8bf34be4c1f358b63b943b440f5f6016"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydateutil/fuzz_tzstr.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101372, "scanner": "repobility-ast-engine", "fingerprint": "787f6d263b33f55da890883feed0a37260d33ddc7c62d2e667f520767315f8fb", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|787f6d263b33f55da890883feed0a37260d33ddc7c62d2e667f520767315f8fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydateutil/fuzz_prop_isoparse.py"}, "region": {"startLine": 48}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101371, "scanner": "repobility-ast-engine", "fingerprint": "7cdbed156573200d52ecd378d5f543f005f9bc3c34e9858e391191c7817fbea1", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7cdbed156573200d52ecd378d5f543f005f9bc3c34e9858e391191c7817fbea1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/pydateutil/fuzz_parser.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101368, "scanner": "repobility-ast-engine", "fingerprint": "16650c1d6c50c57e69acc319316fe521e754ddeca43e1150b2fdda77509023b2", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|16650c1d6c50c57e69acc319316fe521e754ddeca43e1150b2fdda77509023b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/oscrypto/fuzz_asymmetric_load.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101360, "scanner": "repobility-ast-engine", "fingerprint": "fcf4bb3cac8e85fea3357e0c4151521f723281aa51223b62099925b815126290", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fcf4bb3cac8e85fea3357e0c4151521f723281aa51223b62099925b815126290"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/opencensus-python/fuzz_trace.py"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101353, "scanner": "repobility-ast-engine", "fingerprint": "43eae27abf3bd05f4982a16633427693c43f1e4bd5aa86807213244a26ba4099", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|43eae27abf3bd05f4982a16633427693c43f1e4bd5aa86807213244a26ba4099"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/gitdb/fuzz_gitdb.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `time` used but not imported: The file uses `time.something(...)` but never imports `time`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101352, "scanner": "repobility-ast-engine", "fingerprint": "ac9467e939b379856262f76cca0baf9f4786ad1dfbd4412e46f9cac77455cb8a", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ac9467e939b379856262f76cca0baf9f4786ad1dfbd4412e46f9cac77455cb8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msal/fuzz_tokencache.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `json` used but not imported: The file uses `json.something(...)` but never imports `json`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101351, "scanner": "repobility-ast-engine", "fingerprint": "6c2ffbd4a4e3ada1edb946d93b9d80b5fee6a764d24c2d3c693c849b0a575af3", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6c2ffbd4a4e3ada1edb946d93b9d80b5fee6a764d24c2d3c693c849b0a575af3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/msal/fuzz_tokencache.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `io` used but not imported: The file uses `io.something(...)` but never imports `io`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101349, "scanner": "repobility-ast-engine", "fingerprint": "d3267e44ca433c5c3de03863e2f271553933bc9cb41f05e84ba93a7f436b3c2f", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d3267e44ca433c5c3de03863e2f271553933bc9cb41f05e84ba93a7f436b3c2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/scipy/fuzz_io_mio5.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101347, "scanner": "repobility-ast-engine", "fingerprint": "1568445e9d10a092e4e5345f9ad8b2e6c01e8d17cccee3f925bc62d0fa9ba3e8", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1568445e9d10a092e4e5345f9ad8b2e6c01e8d17cccee3f925bc62d0fa9ba3e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jinja2/fuzz_jinja_compile_templates.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `sys` used but not imported: The file uses `sys.something(...)` but never imports `sys`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101337, "scanner": "repobility-ast-engine", "fingerprint": "9f97d4c22fb9e2511f04cb99f29e20f56ce3e22b05b4af0ea60ba1d27d037256", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9f97d4c22fb9e2511f04cb99f29e20f56ce3e22b05b4af0ea60ba1d27d037256"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/flask/cors_fuzz_flask.py"}, "region": {"startLine": 115}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `json` used but not imported: The file uses `json.something(...)` but never imports `json`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101335, "scanner": "repobility-ast-engine", "fingerprint": "18706724b2218e6633a91f41937ac521f0064466c77262389dd647c3a13b2458", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|18706724b2218e6633a91f41937ac521f0064466c77262389dd647c3a13b2458"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/python-fastjsonschema/fuzz_compile.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 101334, "scanner": "repobility-ast-engine", "fingerprint": "105833d91751951b46a57ed6b2a4c7ea0effd268711ffebb96cc46af35643fce", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|105833d91751951b46a57ed6b2a4c7ea0effd268711ffebb96cc46af35643fce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/utils.py"}, "region": {"startLine": 202}}}]}, {"ruleId": "MINED030", "level": "error", "message": {"text": "[MINED030] Python Pickle Loads: pickle.loads() can execute arbitrary code via __reduce__."}, "properties": {"repobilityId": 97193, "scanner": "repobility-threat-engine", "fingerprint": "b4a0fbedc9e6aa36956e3ee9aab05651995fccd9306849c0e3f30be334b57814", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pickle-loads", "owasp": null, "cwe_ids": ["CWE-502"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347968+00:00", "triaged_in_corpus": 20, "observations_count": 6314, "ai_coder_pattern_id": 119}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b4a0fbedc9e6aa36956e3ee9aab05651995fccd9306849c0e3f30be334b57814"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/fuzz_md.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "SEC081", "level": "error", "message": {"text": "[SEC081] Python: pickle.loads / marshal.loads on untrusted data: pickle.load(s) and marshal.load(s) execute arbitrary code on untrusted input. Ported from dlint DUO103 / DUO120 (BSD-3)."}, "properties": {"repobilityId": 97192, "scanner": "repobility-threat-engine", "fingerprint": "c120bc0e7556a3b9413c444b7d7a9beafa1b9217840b8104dcf9ecf88091c836", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "pickle.loads(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC081", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|c120bc0e7556a3b9413c444b7d7a9beafa1b9217840b8104dcf9ecf88091c836"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/fuzz_md.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "MINED018", "level": "error", "message": {"text": "[MINED018] Unsafe Deserialization Pickle: pickle.loads / yaml.load (without Loader=SafeLoader) / unmarshal of network/file data \u2014 RCE."}, "properties": {"repobilityId": 97190, "scanner": "repobility-threat-engine", "fingerprint": "3a0de22e66e066977e1ec821d669ee626714259c9f95f8d6da71143046922d5e", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "unsafe-deserialization-pickle", "owasp": "A08:2021", "cwe_ids": ["CWE-502"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347940+00:00", "triaged_in_corpus": 20, "observations_count": 58759, "ai_coder_pattern_id": 32}, "scanner": "repobility-threat-engine", "correlation_key": "fp|3a0de22e66e066977e1ec821d669ee626714259c9f95f8d6da71143046922d5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/multidict/fuzz_md.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "MINED018", "level": "error", "message": {"text": "[MINED018] Unsafe Deserialization Pickle: pickle.loads / yaml.load (without Loader=SafeLoader) / unmarshal of network/file data \u2014 RCE."}, "properties": {"repobilityId": 97189, "scanner": "repobility-threat-engine", "fingerprint": "68f8a2730217e83417beed44e4a6fdf38421b4e6fc8951842afe908bbb65ca07", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "unsafe-deserialization-pickle", "owasp": "A08:2021", "cwe_ids": ["CWE-502"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347940+00:00", "triaged_in_corpus": 20, "observations_count": 58759, "ai_coder_pattern_id": 32}, "scanner": "repobility-threat-engine", "correlation_key": "fp|68f8a2730217e83417beed44e4a6fdf38421b4e6fc8951842afe908bbb65ca07"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/fuzz.js"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC116", "level": "error", "message": {"text": "[SEC116] Ruby YAML.load / Marshal.load on untrusted input: `YAML.load` (pre-3.1) and `Marshal.load` instantiate arbitrary Ruby classes \u2014 direct RCE on untrusted input. `unsafe_load` is even more dangerous."}, "properties": {"repobilityId": 97188, "scanner": "repobility-threat-engine", "fingerprint": "1c73a7351a73363c51490fc70784ded2ffd717f7a5aef52c4c2c26a8f2b2efba", "category": "deserialization", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "yaml.load(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC116", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|projects/js-yaml/fuzz.js|28|sec116"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/fuzz.js"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC079", "level": "error", "message": {"text": "[SEC079] Python: yaml.load without SafeLoader: yaml.load() without explicit SafeLoader can execute arbitrary Python objects (CVE-2017-18342). Ported from bandit B506 / dlint DUO109 (Apache-2.0 / BSD-3)."}, "properties": {"repobilityId": 97187, "scanner": "repobility-threat-engine", "fingerprint": "77fa7043488ecb74d5c44ef60d0099a5f857860e47ffa26edfcc85555220f73c", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "yaml.load(yamlString, loadOptions)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC079", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|77fa7043488ecb74d5c44ef60d0099a5f857860e47ffa26edfcc85555220f73c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/js-yaml/fuzz.js"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC101", "level": "error", "message": {"text": "[SEC101] Unsafe Java object deserialization (ObjectInputStream): Java ObjectInputStream deserializes untrusted bytes into objects. Attacker-controlled streams trigger gadget chains (Apache Commons Collections, etc.) leading to RCE."}, "properties": {"repobilityId": 97147, "scanner": "repobility-threat-engine", "fingerprint": "701853542878372645bc4cc44046721030e5f07ca5830b489bd45721ed057636", "category": "deserialization", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new ObjectInputStream(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC101", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|39|sec101"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/jfreechart/src/main/java/ossfuzz/TestUtils.java"}, "region": {"startLine": 39}}}]}, {"ruleId": "SEC101", "level": "error", "message": {"text": "[SEC101] Unsafe Java object deserialization (ObjectInputStream): Java ObjectInputStream deserializes untrusted bytes into objects. Attacker-controlled streams trigger gadget chains (Apache Commons Collections, etc.) leading to RCE."}, "properties": {"repobilityId": 97146, "scanner": "repobility-threat-engine", "fingerprint": "110825ce533a0a879fe749fa25245706c2079d498620f65e13233d45b1d4b49c", "category": "deserialization", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "SerializationUtils.deserialize(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC101", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|deserialization|token|38|sec101"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-commons-lang/SerializationUtilsFuzzer.java"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 97126, "scanner": "repobility-threat-engine", "fingerprint": "0b14f1b74797ff4240203a4d280a6966dcf9db0b933cf8c9f393f1e8b5538740", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0b14f1b74797ff4240203a4d280a6966dcf9db0b933cf8c9f393f1e8b5538740"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/binutils/fuzz_addr2line.c"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 97125, "scanner": "repobility-threat-engine", "fingerprint": "ef4fd91f6e3741e7992b8496109b175f372e2b94a0e82cc55ad7905fc9767c28", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ef4fd91f6e3741e7992b8496109b175f372e2b94a0e82cc55ad7905fc9767c28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/apache-httpd/fuzz_utils.c"}, "region": {"startLine": 165}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 97124, "scanner": "repobility-threat-engine", "fingerprint": "d761c5bafae9ca3897d89f1d9c1cf4a654a5d833e1c15880e84d574b930ba86b", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d761c5bafae9ca3897d89f1d9c1cf4a654a5d833e1c15880e84d574b930ba86b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/abseil-cpp/string_utilities_fuzzer.cc"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED007", "level": "error", "message": {"text": "[MINED007] Sql String Concat: cursor.execute(f\"... {user_input} ...\") \u2014 SQL injection."}, "properties": {"repobilityId": 97097, "scanner": "repobility-threat-engine", "fingerprint": "4dbb4b35437cee6fcd2246f82fe040e4cda5c0e93e7a6e6ea466e317636685e0", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "sql-string-concat", "owasp": "A03:2021", "cwe_ids": ["CWE-89"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347914+00:00", "triaged_in_corpus": 20, "observations_count": 210457, "ai_coder_pattern_id": 12}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4dbb4b35437cee6fcd2246f82fe040e4cda5c0e93e7a6e6ea466e317636685e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "projects/hibernate-orm/TestServer.java"}, "region": {"startLine": 31}}}]}, {"ruleId": "MINED007", "level": "error", "message": {"text": "[MINED007] Sql String Concat: cursor.execute(f\"... {user_input} ...\") \u2014 SQL injection."}, "properties": {"repobilityId": 97096, "scanner": "repobility-threat-engine", "fingerprint": "c19395435070ce7cad5de406ee61e09838551f1e39094a61860677293c5574ad", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "sql-string-concat", "owasp": "A03:2021", "cwe_ids": ["CWE-89"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347914+00:00", "triaged_in_corpus": 20, "observations_count": 210457, "ai_coder_pattern_id": 12}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c19395435070ce7cad5de406ee61e09838551f1e39094a61860677293c5574ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "infra/bisector.py"}, "region": {"startLine": 146}}}]}]}]}