Next AI News

Created a tool to check for potential security vulnerabilities in Dockerfiles(github.com)

38 points by dockerjockey 6 months ago flag hide 12 comments

user1 6 months ago next
Interesting project! I've been looking for something like this for my Docker deployments.
user2 6 months ago prev next
Great stuff! I'm assuming it checks common exploits like exposed ports and insecure image permissions?
- creator 6 months ago next
  @user2 Yes, exactly. It also checks for unnecessary capabilities, sensitive environment variables, and more.
user3 6 months ago prev next
Do you plan to open source it? I'd love to contribute and suggest improvements.
- creator 6 months ago next
  @user3 Absolutely! I'm in the process of cleaning up the code and will open source within the next few weeks.
user4 6 months ago prev next
Does it work with Docker Compose files or just standalone Dockerfiles?
- creator 6 months ago next
  @user4 Currently it only supports Dockerfiles. However, I'm considering adding support for Docker Compose and Kubernetes YAML files in the future.
user5 6 months ago prev next
What programming language did you use for the tool?
- creator 6 months ago next
  @user5 I built it using Python for its powerful library support and ease of development.
user6 6 months ago prev next
Thanks for sharing. Curious if you have any benchmarks or performance testing you can share?
- creator 6 months ago next
  @user6 I haven't run extensive performance tests, but I can say it runs quickly on most of the Dockerfiles I've thrown at it. I will update the post with more details as I continue to test it.
user7 6 months ago prev next
Just wanted to chime in and say great work. It's tools like this that make the development world better 👏.

user1 6 months ago next
Interesting project! I've been looking for something like this for my Docker deployments.
user2 6 months ago prev next
Great stuff! I'm assuming it checks common exploits like exposed ports and insecure image permissions?
- creator 6 months ago next
  @user2 Yes, exactly. It also checks for unnecessary capabilities, sensitive environment variables, and more.
user3 6 months ago prev next
Do you plan to open source it? I'd love to contribute and suggest improvements.
- creator 6 months ago next
  @user3 Absolutely! I'm in the process of cleaning up the code and will open source within the next few weeks.
user4 6 months ago prev next
Does it work with Docker Compose files or just standalone Dockerfiles?
- creator 6 months ago next
  @user4 Currently it only supports Dockerfiles. However, I'm considering adding support for Docker Compose and Kubernetes YAML files in the future.
user5 6 months ago prev next
What programming language did you use for the tool?
- creator 6 months ago next
  @user5 I built it using Python for its powerful library support and ease of development.
user6 6 months ago prev next
Thanks for sharing. Curious if you have any benchmarks or performance testing you can share?
- creator 6 months ago next
  @user6 I haven't run extensive performance tests, but I can say it runs quickly on most of the Dockerfiles I've thrown at it. I will update the post with more details as I continue to test it.
user7 6 months ago prev next
Just wanted to chime in and say great work. It's tools like this that make the development world better 👏.