Add support for containers with no entrypoint/cmd #2173
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The API call to create a docker image (e.g. the docker command
docker create
) does not support creating a non-running container with no entrypoint or command specified. This will causeoscap-docker
to fail with the HTTP 400 error from the Docker service:To solve this, for scanning purposes only, pass a null character as the explicit command for all containers.
An example Dockerfile for a container with no command is below. It is more common for container images designed to be used as a base container to have no command as they are not intended to be run directly.