Image user should not be ‘root
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Vulnerability Type | omission |
Description#
The container image is configured to run as the ‘root’ user by default, or does not specify a non-root user. This increases the risk of privilege escalation within the container environment.
Impact#
If exploited, an attacker who gains access to the container could perform administrative actions, potentially escaping the container to access the host system or other containers, leading to full system compromise or data breaches.
Resolution#
Add ‘USER ’ line to the Dockerfile