You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It's common to use DEBIAN_FRONTEND=noninteractive apt-get install package. However the variable causes a false positive even though the install command is followed by cleanup.
Expected Behavior
No vulnerabilities reported
Actual Behavior
Apt Get Install Lists Were Not Deleted
Workaround
Remove variable from apt-get install and precede it with dpkg-reconfigure debconf --frontend=noninteractive
The text was updated successfully, but these errors were encountered:
rossi-fi
changed the title
False positive in dockerfile/apt_get_install_lists_were_not_deleted
bug: false positive in dockerfile/apt_get_install_lists_were_not_deleted
Feb 20, 2024
rossi-fi
changed the title
bug: false positive in dockerfile/apt_get_install_lists_were_not_deleted
bug(rule): false positive from dockerfile/apt_get_install_lists_were_not_deleted
Feb 20, 2024
rossi-fi
changed the title
bug(rule): false positive from dockerfile/apt_get_install_lists_were_not_deleted
bug(query): false positive from dockerfile/apt_get_install_lists_were_not_deleted
Feb 20, 2024
Using ARG to declare the variable is a valid workaround to avoid the false positive. Ideally the rules could be modified so one doesn't need to code around tool behaviour.
It's common to use
DEBIAN_FRONTEND=noninteractive apt-get install package
. However the variable causes a false positive even though the install command is followed by cleanup.Expected Behavior
No vulnerabilities reported
Actual Behavior
Apt Get Install Lists Were Not Deleted
Workaround
Remove variable from apt-get install and precede it with
dpkg-reconfigure debconf --frontend=noninteractive
The text was updated successfully, but these errors were encountered: