container-security-hardening

Enhances container security by hardening Docker images and runtime deployments with best practices for secure configurations and vulnerability scanning.

Install this skill

49/100

Security score

The container-security-hardening skill was audited on Jun 2, 2026 and we found 19 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 112

Template literal with variable interpolation in command context

SourceSKILL.md

112	```dockerfile

medium line 261

Template literal with variable interpolation in command context

SourceSKILL.md

261	```dockerfile

medium line 400

Template literal with variable interpolation in command context

SourceSKILL.md

400

```yaml

medium line 582

Template literal with variable interpolation in command context

SourceSKILL.md

582

```yaml

medium line 203

Curl to non-GitHub URL

SourceSKILL.md

203	RUN curl -H "Authorization: Bearer $TOKEN" https://api.example.com > config.json

medium line 459

Curl to non-GitHub URL

SourceSKILL.md

459	--health-cmd "curl -f http://localhost:3000/health \|\| exit 1" \

medium line 268

Access to root home directory

SourceSKILL.md

268	RUN --mount=type=cache,target=/root/.npm \

low line 241

Access to .env file

SourceSKILL.md

241

.env

low line 242

Access to .env file

SourceSKILL.md

242

.env.*

medium line 950

Access to .env file

SourceSKILL.md

950	- [ ] `.dockerignore` excludes `.git`, `.env`, secrets, tests

low line 203

External URL reference

SourceSKILL.md

203	RUN curl -H "Authorization: Bearer $TOKEN" https://api.example.com > config.json

low line 210

External URL reference

SourceSKILL.md

210	https://api.example.com/config > config.json

low line 230

External URL reference

SourceSKILL.md

230	CMD ["node", "-e", "require('http').get('http://localhost:3000/health', r => process.exit(r.statusCode === 200 ? 0 : 1))"]

low line 288

External URL reference

SourceSKILL.md

288	CMD ["node", "-e", "require('http').get('http://localhost:3000/health', r => process.exit(r.statusCode===200?0:1))"]

low line 459

External URL reference

SourceSKILL.md

459	--health-cmd "curl -f http://localhost:3000/health \|\| exit 1" \

low line 504

External URL reference

SourceSKILL.md

504	test: ["CMD", "curl", "-f", "http://localhost:3000/health"]

low line 578

External URL reference

SourceSKILL.md

578	--certificate-oidc-issuer="https://token.actions.githubusercontent.com"

low line 619

External URL reference

SourceSKILL.md

619	--certificate-oidc-issuer="https://token.actions.githubusercontent.com" \

low line 662

External URL reference

SourceSKILL.md

662	issuer: "https://token.actions.githubusercontent.com"

Scanned on Jun 2, 2026

View Security Dashboard

Installation guide →

GitHub Stars 39.4K

Rate this skill

Categorydevelopment

UpdatedJune 10, 2026

openclaw devops backend devops-sre security-engineer backend-developer docker kubernetes development

sickn33/antigravity-awesome-skills