You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on May 23, 2024. It is now read-only.
There are volume mounts from your Windows user's directory to containers. Anyone cannot be sure that the code running in the container is not malicious and by mounting ~/.aspnet/https and ~/.microsoft/usersecrets you are giving access to your critical files. This is a critical security issue and you should change the following volume definitions in docker-compose.override.yaml
There are volume mounts from your Windows user's directory to containers. Anyone cannot be sure that the code running in the container is not malicious and by mounting
~/.aspnet/https
and~/.microsoft/usersecrets
you are giving access to your critical files. This is a critical security issue and you should change the following volume definitions indocker-compose.override.yaml
A better version of the docker-compose.override.yaml is below which does not use bind mounts but volumes managed by Docker itself.
The text was updated successfully, but these errors were encountered: