Dockerfile Security is a static analyzer that finds security issues in your Dockerfiles before building images.
Prevention is better than cure. Especially in security.
Why is it important?
Dockerfiles are code. And like all code, they can have vulnerabilities:
- Hardcoded secrets
- Users with excessive privileges
- Unnecessary exposed ports
- Outdated software
Features
- Static analysis: No need to build the image
- Fast: Seconds, not minutes
- Integrable: CI/CD friendly
- Detailed: Explains what’s wrong and how to fix it
Impact
+95 stars and used in CI/CD pipelines of companies that take security seriously.
Because it’s better to find problems before they reach production.