Merge pull request #103960 from seans3/security-vulnerability-fix

Fixes (temporarily) curl piped to shell security vulnerability
2025-07-22 03:11:40 +00:00 · 2021-07-28 10:27:35 -07:00 · 2021-07-28 10:27:35 -07:00 · 84451a9c64
commit 84451a9c64
parent dadecb2c89 df1d9380fb
1 changed files with 19 additions and 9 deletions
--- a/staging/src/k8s.io/kubectl/docs/book/Dockerfile
+++ b/staging/src/k8s.io/kubectl/docs/book/Dockerfile
@ -12,16 +12,26 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.

-FROM python:3.7
+###############################################################
+#
+# Security vulnerability: curl piped to shell
+#
+# This code is currently not being run, and it is temporarily
+# commented out until we can decide on a future for the
+# "kubectl book". Sean Sullivan (seans3), 2021-07-27
+#
+###############################################################

-EXPOSE 4000
-RUN curl -sL https://deb.nodesource.com/setup_11.x | bash
+# FROM python:3.7

-RUN apt-get update && apt-get install -y nodejs npm && apt-get clean;
-RUN npm install gitbook-cli -g
+# EXPOSE 4000
+# RUN curl -sL https://deb.nodesource.com/setup_11.x | bash

-WORKDIR /opt/book/
-COPY . /opt/book/
-RUN npm install
+# RUN apt-get update && apt-get install -y nodejs npm && apt-get clean;
+# RUN npm install gitbook-cli -g

-CMD ["gitbook", "serve"]
+# WORKDIR /opt/book/
+# COPY . /opt/book/
+# RUN npm install
+
+# CMD ["gitbook", "serve"]