Issues
 | Use new Sonar Plugin API | Unassigned | Nils Werner |  | Fixed | Nov 30, 2022 | Dec 1, 2022 | ||||
 | Rule S6474: Using remote artifacts without authenticity and integrity checks is security-sensitive | Unassigned | Loris Sierra | | Unresolved | Nov 21, 2022 | Dec 1, 2022 | ||||
 | [CF, TF] FP on rule S6304: "Granting access to all resources" should not be raised on actions without resource-level permissions | Unassigned | Egon Okerman | | Fixed | Nov 4, 2022 | Dec 1, 2022 | ||||
| Rule S6473: Exposing administration services is security-sensitive | Unassigned | Hendrik Buchwald | | Unresolved | Nov 18, 2022 | Nov 28, 2022 | ||||
| Rule S6469: Permissions of sensitive mount points should be restrictive | Unassigned | Hendrik Buchwald | | Unresolved | Nov 15, 2022 | Nov 28, 2022 | ||||
| Rule S6472: Using ENV to handle secrets is security-sensitive | Unassigned | Gaƫtan Ferry | | Unresolved | Nov 23, 2022 | Nov 28, 2022 | ||||
| Rule S6470: Copying context directories recursively is security-sensitive | Unassigned | Gaƫtan Ferry | | Unresolved | Nov 15, 2022 | Nov 28, 2022 | ||||
 | Support environment replacements | Unassigned | Nils Werner | | Unresolved | Nov 18, 2022 | Nov 28, 2022 | ||||
| Fix EXPOSE parsing to support quotes in the middle of port definition | Unassigned | Rudy Regazzoni |  | Unresolved | Nov 16, 2022 | Nov 28, 2022 | ||||
| Docker: parse Directive | Unassigned | Rudy Regazzoni |  | Unresolved | Nov 9, 2022 | Nov 28, 2022 | ||||
| Create metric and highlight visitor | Unassigned | Nils Werner | | Fixed | Nov 9, 2022 | Nov 28, 2022 | ||||
| Extends RUN and COPY of Here-Documents (multi line scripts) | Unassigned | Marcin Stachniuk | | Done | Nov 9, 2022 | Nov 25, 2022 | ||||
 | RUN: Add support for options | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 25, 2022 | ||||
| Docker: parse RUN instruction | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 25, 2022 | ||||
| Rule S5332: Using clear-text protocols is security-sensitive | Unassigned | Hendrik Buchwald | | Unresolved | Nov 24, 2022 | Nov 24, 2022 | ||||
| Multiline : add support for windows line ending CRLF | Unassigned | Rudy Regazzoni | | Done | Nov 24, 2022 | Nov 24, 2022 | ||||
| Analyze also Dockerfiles which has a suffix | Unassigned | Nils Werner | | Done | Nov 24, 2022 | Nov 24, 2022 | ||||
| Allow comments in multi line instructions | Unassigned | Nils Werner | | Fixed | Nov 23, 2022 | Nov 24, 2022 | ||||
| Rule S6476: Instructions should be upper case | Unassigned | Nils Werner | | Fixed | Nov 23, 2022 | Nov 23, 2022 | ||||
| Rule S6471: Running containers as a privileged user is security-sensitive | Unassigned | Loris Sierra | | Unresolved | Nov 14, 2022 | Nov 23, 2022 | ||||
| Docker: parse comment | Unassigned | Rudy Regazzoni | | Won't Fix | Nov 23, 2022 | Nov 23, 2022 | ||||
| Keywords should only be followed by whitespace | Unassigned | Rudy Regazzoni | | Fixed | Nov 22, 2022 | Nov 23, 2022 | ||||
| Docker: parse HEALTHCHECK instruction | Unassigned | Marcin Stachniuk | | Done | Nov 9, 2022 | Nov 23, 2022 | ||||
| Extend RunTree to support exec form | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 23, 2022 | ||||
| Basic implementation to support shell form | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 23, 2022 | ||||
| Support multiline using \ escape character | Unassigned | Rudy Regazzoni | | Fixed | Nov 15, 2022 | Nov 23, 2022 | ||||
| Setup a common interface CommandInstructionTree to have a shared method arguments() | Unassigned | Rudy Regazzoni | | Duplicate | Nov 22, 2022 | Nov 23, 2022 | ||||
| Docker: parse SHELL instruction | Unassigned | Marcin Stachniuk | | Done | Nov 9, 2022 | Nov 23, 2022 | ||||
| Docker: parse VOLUME instruction | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 22, 2022 | ||||
| Docker: parse COPY instruction | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 22, 2022 | ||||
| Support port range for instruction EXPOSE | Unassigned | Rudy Regazzoni | | Fixed | Nov 16, 2022 | Nov 22, 2022 | ||||
| Extend EntrypointTree to support exec form | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 22, 2022 | ||||
| Basic implementation to support shell form | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 22, 2022 | ||||
| Docker: parse ENTRYPOINT instruction | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 22, 2022 | ||||
| Docker ADD Instruction : add support of JSON format argument | Unassigned | Rudy Regazzoni | | Fixed | Nov 17, 2022 | Nov 22, 2022 | ||||
| Docker: parse MAINTAINER instruction (deprecated) | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 22, 2022 | ||||
| Support arguments | Unassigned | Rudy Regazzoni | | Done | Nov 14, 2022 | Nov 22, 2022 | ||||
| Docker: parse USER instruction | Unassigned | Marcin Stachniuk | | Done | Nov 9, 2022 | Nov 21, 2022 | ||||
| Docker: parse CMD instruction | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 21, 2022 | ||||
| Docker: parse ADD instruction | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 21, 2022 | ||||
| CMD Basic implementation to support shell form | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 21, 2022 | ||||
| S6329 Assigning public IP address to an AWS resource is security-sensitive | Unassigned | Eric Therond | | Fixed | Jul 14, 2021 | Nov 21, 2022 | ||||
| Docker: parse FROM instruction | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 21, 2022 | ||||
| Extend the usage of ImageTree | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 21, 2022 | ||||
| CMD Extend CmdTree to support exec form | Unassigned | Rudy Regazzoni | | Done | Nov 9, 2022 | Nov 18, 2022 | ||||
| Docker: parse ONBUILD instruction | Unassigned | Marcin Stachniuk | | Fixed | Nov 9, 2022 | Nov 18, 2022 | ||||
| Docker: parse ARG instruction | Unassigned | Marcin Stachniuk | | Done | Nov 9, 2022 | Nov 18, 2022 | ||||
| Basic implementation of FROM instruction | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 17, 2022 | ||||
| Docker: parse ENV instruction | Unassigned | Rudy Regazzoni | | Fixed | Nov 9, 2022 | Nov 17, 2022 | ||||
| Instruction keywords should be case insensitive | Unassigned | Rudy Regazzoni | | Fixed | Nov 15, 2022 | Nov 17, 2022 |
1-50 of 477