dockerfile-scan
@novacode37 · 收录于 1 周前
Scan a Dockerfile for insecure build patterns — running as root, unpinned or :latest base images, ADD from remote URLs, piping curl/wget into a shell, hardcoded secrets in ENV/ARG, world-writable chmod 777, and sudo usage. Use when the user asks to "review my Dockerfile", "is this container image secure", "lint my Dockerfile for security", or "why does my image run as root".
适合你,如果担心 Dockerfile 存在安全漏洞或配置不当
/ 通过 npx 安装 校验哈希
npx oh-my-skill add novacode37/claude-security-skills/dockerfile-scan/ 通过 bash 安装
curl -fsSL https://oh-my-skill.com/install.sh | bash -s -- novacode37/claude-security-skills/dockerfile-scan/ 已经装过?验证本机副本,不用重装
npx oh-my-skill verify novacode37/claude-security-skills/dockerfile-scan安装目标可用 --agent / --scope 或 --to 明确指定;省略时只会在唯一已存在的 agent 目录上自动选择,零命中或多命中会停止并提示。content_hash 缺失或不一致均拒装。
11GitHub stars
~433最小装载
~433含声明引用
~3.1K文本包总量
索引托管
评论
登录即可评论;带「已验证安装」的,是发布者名下有本店的安装或持有记录。
…