...
Dockle の実行例: ターゲット イメージ = azureiotedge サンプル アプリケーション
buildhost$ dockle mcr mcr.microsoft.com/azureiotedge-simulated-temperature-sensor:1.0 INFO - CIS-DI-0005: Enable Content trust for Docker * export DOCKER_CONTENT_TRUST=1 before docker pull/build INFO - CIS-DI-0006: Add HEALTHCHECK instruction to the container image * not found HEALTHCHECK statement INFO - CIS-DI-0008: Confirm safety of setuid/setgid files * setuid file: urwxr-xr-x bin/su * setuid file: urwxr-xr-x usr/bin/chsh <<<<........ SNIP ........>>>> * setgid file: grwxr-xr-x sbin/unix_chkpwd INFO - DKL-LI-0003: Only put necessary files * unnecessary file : app/docker/linux/arm64v8/base/Dockerfile * unnecessary file : app/docker/linux/arm32v7/base/Dockerfile <<<<........ SNIP ........>>>> * unnecessary file : app/docker/windows/arm32v7/base/Dockerfile |
...