{"id":28781036,"url":"https://github.com/workday/tclscan-docker","last_synced_at":"2025-07-16T13:02:27.778Z","repository":{"id":71172018,"uuid":"226208169","full_name":"Workday/tclscan-docker","owner":"Workday","description":"tclscan docker image","archived":false,"fork":false,"pushed_at":"2019-12-10T18:20:44.000Z","size":5,"stargazers_count":3,"open_issues_count":0,"forks_count":7,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-06-17T18:52:00.659Z","etag":null,"topics":["docker","docker-image","dockerfile","tcl","tclscan"],"latest_commit_sha":null,"homepage":null,"language":"Dockerfile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Workday.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-12-05T23:38:52.000Z","updated_at":"2025-02-06T21:17:26.000Z","dependencies_parsed_at":"2023-06-08T19:15:50.625Z","dependency_job_id":null,"html_url":"https://github.com/Workday/tclscan-docker","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Workday/tclscan-docker","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Workday%2Ftclscan-docker","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Workday%2Ftclscan-docker/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Workday%2Ftclscan-docker/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Workday%2Ftclscan-docker/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Workday","download_url":"https://codeload.github.com/Workday/tclscan-docker/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Workday%2Ftclscan-docker/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":265511851,"owners_count":23779821,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","docker-image","dockerfile","tcl","tclscan"],"created_at":"2025-06-17T18:39:35.329Z","updated_at":"2025-07-16T13:02:27.705Z","avatar_url":"https://github.com/Workday.png","language":"Dockerfile","funding_links":[],"categories":[],"sub_categories":[],"readme":"# tclscan-docker\ntclscan docker image\n\n`tclscan` is a tool that scans Tcl code for command injection flaws. For example, it can be used to assess vulnerabilities in F5 load balancer rules (implemented in Tcl). Building `tclscan` from source has proven somewhat challenging because of its dependencies (Tcl, Rust, LLVM), version mismatches, etc. `tclscan-docker` helps with that by providing a standard Dockerfile and Docker image\n\nSee\n* https://github.com/kugg/tclscan\n* https://blog.f-secure.com/command-injection-in-f5-irules/\n\n### Build\n  ```\n  docker build -t tclscan .\n  ```\n\n### Run\n* Usage\n```\ndocker run --rm -i tclscan\n```\n\n```\nInvalid arguments.\n\nUsage: tclscan check [--no-warn] ( - | \u003cpath\u003e )\n    tclscan parsestr ( - | \u003cscript-str\u003e )\n```\n\n* Read file from pipe (stdin)\n```\ndocker run --rm -i tclscan check - \u003c poo.tcl\n```\nor\n```\ncat poo.tcl | docker run --rm -i tclscan check -\n```\n\n```\nDANGER: Dangerous unquoted block at `[stats [HTTP::header {user-agent}]]` in `eval [stats [HTTP::header {user-agent}]]\n`\n```\n\n* Read file from current directory (via docker volume mount)\n```\ndocker run --rm -i -v `pwd`:/data tclscan check poo.tcl\n```\n\n```\nDANGER: Dangerous unquoted block at `[stats [HTTP::header {user-agent}]]` in `eval [stats [HTTP::header {user-agent}]]\n`\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fworkday%2Ftclscan-docker","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fworkday%2Ftclscan-docker","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fworkday%2Ftclscan-docker/lists"}