Use when reviewing a Dockerfile (or container build) for security, image size, reproducibility, and maintainability — runs as root? secrets baked into layers? unpinned base/deps? no multi-stage? missing .dockerignore/…
---
name: Dockerfile Audit
description: Use when reviewing a Dockerfile (or container build) for security, image size, reproducibility, and maintainability — runs as root? secrets baked into layers? unpinned base/deps? no multi-stage? missing .dockerignore/HEALTHCHECK? Produces a severity-ranked issue list with concrete fixes.…
---
# Dockerfile Audit
Part of the **DevOps & SRE Skillkit** pack by socake (`socake/cc-skillkit`).
Use when reviewing a Dockerfile (or container build) for security, image size, reproducibility, and maintainability — runs as root? secrets baked into layers? unpinned base/deps? no multi-stage? missing .dockerignore/HEALTHCHECK? Produces a severity-ranked issue list with concrete fixes.…
This catalog entry summarizes the skill for discovery. Get the full skill — including any bundled scripts and resources — from the source:
Full skill & source: https://github.com/socake/cc-skillkit/tree/main/plugins/ops-toolkit/skills/dockerfile-audit
Sign in to rate and review this skill.
No reviews yet. Be the first to review this skill.