Critical
High
Medium
Low
Secrets
Misconfig
| Severity | CVE ID | Package | Installed | Fixed In | Description |
|---|---|---|---|---|---|
| ✅ No vulnerabilities found | |||||
| Type | File | Line | Match |
|---|---|---|---|
| ✅ No secrets found | |||
| Severity | ID | Check | File | Message |
|---|---|---|---|---|
| HIGH | DS-0002 | Image user should not be 'root' | Dockerfile | Specify at least 1 USER command in Dockerfile with non-root user as argument |
{
"SchemaVersion": 2,
"Trivy": {
"Version": "0.69.0"
},
"ReportID": "019cd0ff-048a-731f-be37-970dc94e9cf1",
"CreatedAt": "2026-03-09T05:08:19.722206395Z",
"ArtifactID": "sha256:ea86dd7cb948103a6c476fc32c98ab4b5c07749e049dac1062573bd00a67fe81",
"ArtifactName": "/src",
"ArtifactType": "repository",
"Metadata": {
"RepoURL": "https://github.com/eizen-ai/eizen-chat-utils",
"Branch": "develop",
"Commit": "2c02f5e2946ed10e946ea12cef3009406aaa27a9",
"CommitMsg": "Fix: Security vulnerabilities - eval() RCE, path traversal, SQL injection guard, log redaction",
"Author": "eizen-surya <suryavignesh.kapuganti@eizen.ai>",
"Committer": "eizen-surya <suryavignesh.kapuganti@eizen.ai>"
},
"Results": [
{
"Target": "requirements.txt",
"Class": "lang-pkgs",
"Type": "pip",
"Packages": [
{
"Name": "PyYAML",
"Identifier": {
"PURL": "pkg:pypi/pyyaml@6.0.3",
"UID": "3098ce187df0fc73"
},
"Version": "6.0.3",
"Locations": [
{
"StartLine": 45,
"EndLine": 45
}
],
"AnalyzedBy": "pip"
},
{
"Name": "aiofiles",
"Identifier": {
"PURL": "pkg:pypi/aiofiles@25.1.0",
"UID": "7fb001c0c4ade6cc"
},
"Version": "25.1.0",
"Locations": [
{
"StartLine": 51,
"EndLine": 51
}
],
"AnalyzedBy": "pip"
},
{
"Name": "aiohttp",
"Identifier": {
"PURL": "pkg:pypi/aiohttp@3.13.3",
"UID": "c897cc23b8a550c5"
},
"Version": "3.13.3",
"Locations": [
{
"StartLine": 20,
"EndLine": 20
}
],
"AnalyzedBy": "pip"
},
{
"Name": "boto3",
"Identifier": {
"PURL": "pkg:pypi/boto3@1.42.62",
"UID": "6b572de45bf311e9"
},
"Version": "1.42.62",
"Locations": [
{
"StartLine": 41,
"EndLine": 41
}
],
"AnalyzedBy": "pip"
},
{
"Name": "faiss-cpu",
"Identifier": {
"PURL": "pkg:pypi/faiss-cpu@1.13.2",
"UID": "2e484f7daaedc7e3"
},
"Version": "1.13.2",
"Locations": [
{
"StartLine": 27,
"EndLine": 27
}
],
"AnalyzedBy": "pip"
},
{
"Name": "fastapi",
"Identifier": {
"PURL": "pkg:pypi/fastapi@0.135.1",
"UID": "f9fcc5abebbfb30"
},
"Version": "0.135.1",
"Locations": [
{
"StartLine": 2,
"EndLine": 2
}
],
"AnalyzedBy": "pip"
},
{
"Name": "google-generativeai",
"Identifier": {
"PURL": "pkg:pypi/google-generativeai@0.8.6",
"UID": "bbd7d790a2f0de0"
},
"Version": "0.8.6",
"Locations": [
{
"StartLine": 17,
"EndLine": 17
}
],
"AnalyzedBy": "pip"
},
{
"Name": "langchain",
"Identifier": {
"PURL": "pkg:pypi/langchain@1.2.10",
"UID": "1e23447e97255b4d"
},
"Version": "1.2.10",
"Locations": [
{
"StartLine": 31,
"EndLine": 31
}
],
"AnalyzedBy": "pip"
},
{
"Name": "langchain-community",
"Identifier": {
"PURL": "pkg:pypi/langchain-community@0.4.1",
"UID": "1ff7cbe5fd2cde6e"
},
"Version": "0.4.1",
"Locations": [
{
"StartLine": 32,
"EndLine": 32
}
],
"AnalyzedBy": "pip"
},
{
"Name": "langchain-huggingface",
"Identifier": {
"PURL": "pkg:pypi/langchain-huggingface@1.2.1",
"UID": "79235bff1c1ec7df"
},
"Version": "1.2.1",
"Locations": [
{
"StartLine": 33,
"EndLine": 33
}
],
"AnalyzedBy": "pip"
},
{
"Name": "loguru",
"Identifier": {
"PURL": "pkg:pypi/loguru@0.7.3",
"UID": "b2eefc694b44628c"
},
"Version": "0.7.3",
"Locations": [
{
"StartLine": 48,
"EndLine": 48
}
],
"AnalyzedBy": "pip"
},
{
"Name": "motor",
"Identifier": {
"PURL": "pkg:pypi/motor@3.7.1",
"UID": "235e3abb7c0f7bc3"
},
"Version": "3.7.1",
"Locations": [
{
"StartLine": 7,
"EndLine": 7
}
],
"AnalyzedBy": "pip"
},
{
"Name": "mysql-connector-python",
"Identifier": {
"PURL": "pkg:pypi/mysql-connector-python@9.6.0",
"UID": "89b0fc05cf2ac053"
},
"Version": "9.6.0",
"Locations": [
{
"StartLine": 11,
"EndLine": 11
}
],
"AnalyzedBy": "pip"
},
{
"Name": "openai",
"Identifier": {
"PURL": "pkg:pypi/openai@2.26.0",
"UID": "f6e6c384fb5534e"
},
"Version": "2.26.0",
"Locations": [
{
"StartLine": 14,
"EndLine": 14
}
],
"AnalyzedBy": "pip"
},
{
"Name": "openpyxl",
"Identifier": {
"PURL": "pkg:pypi/openpyxl@3.1.5",
"UID": "57d649c13de0e46"
},
"Version": "3.1.5",
"Locations": [
{
"StartLine": 37,
"EndLine": 37
}
],
"AnalyzedBy": "pip"
},
{
"Name": "pandas",
"Identifier": {
"PURL": "pkg:pypi/pandas@3.0.1",
"UID": "41701306ebee8d9b"
},
"Version": "3.0.1",
"Locations": [
{
"StartLine": 36,
"EndLine": 36
}
],
"AnalyzedBy": "pip"
},
{
"Name": "pydantic_settings",
"Identifier": {
"PURL": "pkg:pypi/pydantic-settings@2.13.1",
"UID": "71fbe422442bc23f"
},
"Version": "2.13.1",
"Locations": [
{
"StartLine": 4,
"EndLine": 4
}
],
"AnalyzedBy": "pip"
},
{
"Name": "pymongo",
"Identifier": {
"PURL": "pkg:pypi/pymongo@4.16.0",
"UID": "a4c1200a4a7e8f45"
},
"Version": "4.16.0",
"Locations": [
{
"StartLine": 8,
"EndLine": 8
}
],
"AnalyzedBy": "pip"
},
{
"Name": "python-dotenv",
"Identifier": {
"PURL": "pkg:pypi/python-dotenv@1.2.2",
"UID": "e9e1b9727ae5a57"
},
"Version": "1.2.2",
"Locations": [
{
"StartLine": 44,
"EndLine": 44
}
],
"AnalyzedBy": "pip"
},
{
"Name": "requests",
"Identifier": {
"PURL": "pkg:pypi/requests@2.32.5",
"UID": "e1114609f9e36eef"
},
"Version": "2.32.5",
"Locations": [
{
"StartLine": 21,
"EndLine": 21
}
],
"AnalyzedBy": "pip"
},
{
"Name": "schedule",
"Identifier": {
"PURL": "pkg:pypi/schedule@1.2.2",
"UID": "64decdb85b4871dc"
},
"Version": "1.2.2",
"Locations": [
{
"StartLine": 54,
"EndLine": 54
}
],
"AnalyzedBy": "pip"
},
{
"Name": "sentence-transformers",
"Identifier": {
"PURL": "pkg:pypi/sentence-transformers@5.2.3",
"UID": "d78e8bb203c12324"
},
"Version": "5.2.3",
"Locations": [
{
"StartLine": 28,
"EndLine": 28
}
],
"AnalyzedBy": "pip"
},
{
"Name": "slowapi",
"Identifier": {
"PURL": "pkg:pypi/slowapi@0.1.9",
"UID": "5a2f7c075ad4b65e"
},
"Version": "0.1.9",
"Locations": [
{
"StartLine": 24,
"EndLine": 24
}
],
"AnalyzedBy": "pip"
},
{
"Name": "sqlparse",
"Identifier": {
"PURL": "pkg:pypi/sqlparse@0.5.5",
"UID": "99354c965518da79"
},
"Version": "0.5.5",
"Locations": [
{
"StartLine": 38,
"EndLine": 38
}
],
"AnalyzedBy": "pip"
},
{
"Name": "uvicorn",
"Identifier": {
"PURL": "pkg:pypi/uvicorn@0.41.0",
"UID": "f0e3a99b48397e02"
},
"Version": "0.41.0",
"Locations": [
{
"StartLine": 3,
"EndLine": 3
}
],
"AnalyzedBy": "pip"
}
]
},
{
"Target": "Dockerfile",
"Class": "config",
"Type": "dockerfile",
"MisconfSummary": {
"Successes": 23,
"Failures": 1
},
"Misconfigurations": [
{
"Type": "Dockerfile Security Check",
"ID": "DS-0002",
"Title": "Image user should not be 'root'",
"Description": "Running containers with 'root' user can lead to a container escape situation. It is a best practice to run containers as non-root users, which can be done by adding a 'USER' statement to the Dockerfile.",
"Message": "Specify at least 1 USER command in Dockerfile with non-root user as argument",
"Namespace": "builtin.dockerfile.DS002",
"Query": "data.builtin.dockerfile.DS002.deny",
"Resolution": "Add 'USER <non root user name>' line to the Dockerfile",
"Severity": "HIGH",
"PrimaryURL": "https://avd.aquasec.com/misconfig/ds-0002",
"References": [
"https://docs.docker.com/develop/develop-images/dockerfile_best-practices/",
"https://avd.aquasec.com/misconfig/ds-0002"
],
"Status": "FAIL",
"CauseMetadata": {
"Provider": "Dockerfile",
"Service": "general"
}
}
]
}
]
}