DockF-Sec-Check helps to make your Dockerfile commands more secure.
Or
Sponsor me : https://github.com/sponsors/OsmanKandemir
Your support will be much appreciated
Done
- [x] First-level security notification in the Dockerfile
TODO List
- [ ] Correctly detect the Dockerfile.
- [ ] Second-level security notification in the Dockerfile.
- [ ] Security notification in Docker images.
- [ ] ***** (Private Repository)
Installation
From Source Code
You can use virtualenv for package dependencies before installation.
코드:
git clone https://github.com/OsmanKandemir/docf-sec-check.git
cd docf-sec-check
python setup.py build
python setup.py installFrom Pypi
The application is available on PyPI. To install with pip:pip install docfseccheckFrom Dockerfile
You can run this application on a container after build a Dockerfile. You need to specify a path (YOUR-LOCAL-PATH) to scan the Dockerfile in your local.
코드:
docker build -t docfseccheck .
docker run -v <YOUR-LOCAL-PATH>/Dockerfile:/docf-sec-check/Dockerfile docfseccheck -f /docf-sec-check/DockerfileFrom DockerHub
코드:
docker pull osmankandemir/docfseccheck:v1.0
docker run -v <YOUR-LOCAL-PATH>/Dockerfile:/docf-sec-check/Dockerfile osmankandemir/docfseccheck:v1.0 -f /docf-sec-check/DockerfileUsage
코드:
-f DOCKERFILE [DOCKERFILE], --file DOCKERFILE [DOCKERFILE] Dockerfile path. --file DockerfileFunction Usage
코드:
from docfchecker import DocFChecker
#Dockerfile is your file PATH.
DocFChecker(["Dockerfile"])Development and Contribution
See; CONTRIBUTING.md
License
Copyright (c) 2024 Osman Kandemir \ Licensed under the GPL-3.0 License.Donations
If you like DocF-Sec-Check and would like to show support, you can use Buy A Coffee or Github Sponsors feature for the developer using the button below.Or
Sponsor me : https://github.com/sponsors/OsmanKandemir
Your support will be much appreciated