Patent · US Active

Modification of a Dockerfile to repair vulnerabilities existing in the Dockerfile

US12099613B2 · kind B2 · utility

0Cited by

1References

19Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Xiang Yang · Santa Clara, US
Yong Wang · Xi'an, CN
Zhong Fang Yuan · Xi'an, CN
Deng Xin Luo · Yangshuo, CN
Ye Wang · Beijing, CN
Zhi Yong Jia · Xi'an, CN

Key dates

Filing date	Sep 16, 2021
Grant date	Sep 24, 2024
Priority date	—
Expiry date	Mar 26, 2043

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method, computer program product, and computer system for repairing a Dockerfile. Library versions containing initial version numbers of libraries are extracted from the Dockerfile. A Monte Carlo tree search (MCTS) is executed, using the extracted library versions as input, which generates a tree that includes multiple levels populated with noses. Each node in a level represents the generic library name of a library version in the Dockrerfile and an associated randomly selected version number. At least one of the randomly selected version numbers associated with at least one node in a level differs from the initial version number associated with a versionf. A best successful installation path is selected from the at least one successful installation path. The Dockerfile is repaired by inserting randomly selected version numbers into Dockerfile as replacements for some of the initial version numbers.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.