Dockerfile usually was forgotten form the security analysis in the DevSecOps life-cycle.
So, using this tool you can check the most common security issues that most of people does when create your Dockerfile.
With this online tool you can check:
- Ensure user permissions and running path are correct
- Avoid run software with correct permissions
- Avoid run software with vulnerabilities
- Good practices
- Avoid expose critical information