super-review:dockerfile
CommunityHarden Dockerfiles with evidence-based checks.
Software Engineering#container security#dockerfile#multi-stage builds#build reproducibility#evidence-based code review#build secrets#image hardening
Authormattnowdev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill reduces insecure, non-reproducible, and bloated container images by flagging Dockerfile anti-patterns that commonly slip past basic linting and lead to real runtime and supply-chain risk.
Core Features & Use Cases
- Rootless execution enforcement: Detects missing or ineffective
USERdirectives (including numeric UID/GID requirements). - Multi-stage hygiene & image bloat prevention: Identifies single-stage build leakage of compilers and build tools into production images.
- Build cache and reproducibility improvements: Finds
COPY . .ordering issues, missing.dockerignoreexclusions, non-pinned base images, and multi-arch build performance gaps. - Secrets safety during builds: Detects credential-shaped
ARGusage and recommends BuildKit--mount=type=secret. - Runtime operability and clarity: Flags missing
HEALTHCHECKand mismatchedEXPOSEdeclarations.
Quick Start
Ask the orchestrator to review your PR: "Run super-review:run on this diff that changes Dockerfile, .dockerignore, or docker-compose.yml and produce a bounded, evidence-quoted container build report."
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: super-review:dockerfile Download link: https://github.com/mattnowdev/super-review/archive/main.zip#super-review-dockerfile Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.