docker-scout-scanner
CommunityScan Docker images for CVEs and harden containers.
Software Engineering#docker#dockerfile#cve#sbom#container-security#vulnerability-analysis#docker-scout
Authorkalshamsi
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill helps security teams identify vulnerabilities and misconfigurations in Docker images and Dockerfiles by leveraging Docker Scout and a rigorous Dockerfile review process.
Core Features & Use Cases
- Docker Scout-based scanning to identify CVEs across image layers, insecure Dockerfile patterns, outdated base images, and misconfigurations, with mappings to CWE and OWASP Top 10:2021.
- Fallback to a ten-point static Dockerfile review when Docker Scout is unavailable to ensure critical hardening checks are still performed.
- Clear, CWE/OWASP-aligned remediation guidance suitable for CI reports and security reviews.
Quick Start
Scan a Docker project to generate a security report using Docker Scout when available and fall back to a static Dockerfile review.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: docker-scout-scanner Download link: https://github.com/kalshamsi/claude-security-skills/archive/main.zip#docker-scout-scanner Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.