TF 0019 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Multiple ENTRYPOINT instructions listed
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Vulnerability Type | omission |
Description
Defining multiple ENTRYPOINT instructions in a Dockerfile causes only the last one to be used, rendering previous ENTRYPOINT commands ineffective. This can lead to unexpected container behavior and misconfiguration.
Impact
Critical application processes may not start as intended, potentially resulting in containers running the wrong commands or failing to launch. This can disrupt services, introduce security risks, and make containers behave unpredictably in production.
Resolution
Remove unnecessary ENTRYPOINT instruction.