Add a Docker-focused operational security auditor.
Goals:
- detect exposed container ports
- detect privileged containers
- analyze restart policies
- analyze bind mounts
- detect risky network exposure
- detect missing healthchecks
- identify dangerous latest-tag usage
Supported inputs:
- docker-compose.yml
- docker ps output
- docker inspect snippets
The tool should focus on practical operational risk instead of enterprise vulnerability scanning.
Add a Docker-focused operational security auditor.
Goals:
Supported inputs:
The tool should focus on practical operational risk instead of enterprise vulnerability scanning.