1. HIGH: Backend Docker Container Runs as Root, Amplifying RCE Risk
A critical security oversight in the backend Dockerfile leaves the application running as the root user inside its container. This configuration significantly amplifies the impact of any potential Remote Code Execution (RCE) vulnerability, granting an attacker full system-level privileges within the container environme...