Docker Secrets Scanner

The Docker Secrets Scanner skill enables Claude to perform automated security audits on containerized environments by analyzing Dockerfiles, Compose files, and environment variables for exposed sensitive data. It detects critical vulnerabilities such as hardcoded passwords, leaked API keys, and insecurely embedded private keys across multiple file types. Beyond simple detection, it provides severity classification and actionable remediation patterns, helping developers transition from insecure hardcoding to production-grade practices like Docker Secrets and BuildKit mounts.

주요 기능

사용 사례