Can this skill be used for non-PHP projects?

Yes. While it is part of a PHP toolkit, the detection patterns for root users, exposed secrets, and privileged mode are universal to most Docker environments.

Does it scan for vulnerabilities inside the base images?

No, this skill focuses on configuration and build-time logic (Dockerfiles/Compose). For scanning OS packages within images, you should supplement this with tools like Trivy or Grype.

Does the skill provide automatic fixes?

The skill identifies the specific lines of code at fault and provides 'Secure' code patterns that you can instruct Claude to apply to your files immediately.

How does it help with OWASP compliance?

The skill maps every detected vulnerability to specific OWASP categories like A01 (Broken Access Control) and A05 (Security Misconfiguration) to help you meet compliance requirements.

Docker Security Checker

Name: Docker Security Checker
Author: dykyi-roman

bydykyi-roman

•

セキュリティとテスト

Identifies and remediates security vulnerabilities in Docker configurations for PHP applications.

The Docker Security Checker is a specialized auditing tool designed to harden containerized PHP environments. It scans Dockerfiles and Docker Compose manifests to detect critical risks such as containers running as root, hardcoded secrets, privileged mode escalation, and missing security capabilities. By mapping findings to OWASP categories and providing immediate remediation patterns, this skill helps developers implement production-grade security standards and minimize the attack surface of their infrastructure.

主な機能

01Scans for insecure networking and unnecessary public port exposures

0245 GitHub stars

03Enforces best practices like image version pinning and read-only filesystems

04Audits Docker Compose for privileged mode and excessive host capabilities

05Detects hardcoded secrets and sensitive environment variables in Dockerfiles

06Identifies containers running without explicit non-root user instructions

ユースケース

01Automating the detection of insecure container patterns during the development lifecycle

02Hardening container configurations before deploying PHP applications to production

03Performing security audits on legacy Docker environments to align with OWASP standards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add dykyi-roman/awesome-claude-code check-docker-security

For use in Claude.ai and ChatGPT

Download Skill