Docker Security

Name: Docker Security
Author: pluginagentmarketplace

pluginagentmarketplace/custom-plugin-docker

Run structured Docker and container security checks with configurable strictness before you ship images or merge infra changes.

Install

npx skills add https://github.com/pluginagentmarketplace/custom-plugin-docker --skill docker-security

What is this skill?

JSON Schema–backed skill config with semver versioning and security category enum
Validation block with strict_mode and auto_fix toggles for dev vs production
Markdown output format with optional examples for agent-readable reports
Integration hooks for git, linter, and formatter workflows
Environment overrides separating debug logging in development from warn-level production checks

Adoption & trust: 1 installs on skills.sh; 2 GitHub stars; 2/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

Recommended Skills

Azure Compliancemicrosoft/azure-skills

Azure Compliance is a Microsoft agent skill for solo builders and small teams who need structured security and complianc…373k installs·1.2k stars

Openclaw Secure Linux Cloudxixu-me/skills

OpenClaw Secure Linux Cloud guides a hardened VPS deployment—rootless Podman, loopback-only gateway, SSH-tunneled Contro…201k installs·61 stars

Entra Agent Idmicrosoft/azure-skills

entra-agent-id is a Microsoft-authored agent skill for provisioning and operating OAuth-capable identities tailored to A…99.1k installs·1.2k stars

Firebase Security Rules Auditorfirebase/agent-skills

Firebase Security Rules Auditor turns your agent into a senior penetration-style reviewer for Firestore rulesets. Solo b…40.3k installs·345 stars

Firestore Security Rules Auditorfirebase/agent-skills

Firestore-security-rules-auditor is a checker skill for solo builders and small teams shipping Firebase-backed apps who …20.3k installs·345 stars

Skill Vetteruseai-pro/openclaw-skills-security

Skill Vetter is a security-first OpenClaw agent skill that makes your coding agent behave like a pre-install auditor for…19.2k installs·62 stars

Journey fit

Primary fit

Canonical shelf is Ship because the skill’s defaults and production overrides target validation gates before release, even though Dockerfile work happens earlier in Build. Security subphase fits container hardening, image policy validation, and strict_mode enforcement described in the production environment profile.

Common Questions / FAQ

Is Docker Security safe to install?

skills.sh reports 2 of 3 security scanners passed. Review the Security Audits panel on this page before installing in production.

SKILL.md

READMESKILL.md - Docker Security

# docker-security Configuration
# Category: security
# Generated: 2025-12-30

skill:
  name: docker-security
  version: "1.0.0"
  category: security

settings:
  # Default settings for docker-security
  enabled: true
  log_level: info

  # Category-specific defaults
  validation:
    strict_mode: false
    auto_fix: false

  output:
    format: markdown
    include_examples: true

# Environment-specific overrides
environments:
  development:
    log_level: debug
    validation:
      strict_mode: false

  production:
    log_level: warn
    validation:
      strict_mode: true

# Integration settings
integrations:
  # Enable/disable integrations
  git: true
  linter: true
  formatter: true


{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "title": "docker-security Configuration Schema",
  "type": "object",
  "properties": {
    "skill": {
      "type": "object",
      "properties": {
        "name": {
          "type": "string"
        },
        "version": {
          "type": "string",
          "pattern": "^\\d+\\.\\d+\\.\\d+$"
        },
        "category": {
          "type": "string",
          "enum": [
            "api",
            "testing",
            "devops",
            "security",
            "database",
            "frontend",
            "algorithms",
            "machine-learning",
            "cloud",
            "containers",
            "general"
          ]
        }
      },
      "required": [
        "name",
        "version"
      ]
    },
    "settings": {
      "type": "object",
      "properties": {
        "enabled": {
          "type": "boolean",
          "default": true
        },
        "log_level": {
          "type": "string",
          "enum": [
            "debug",
            "info",
            "warn",
            "error"
          ]
        }
      }
    }
  },
  "required": [
    "skill"
  ]
}

# Docker Security Checklist
image_security:
  - Use official base images
  - Scan images with Trivy/Snyk
  - Pin image versions (no :latest)
  - Use multi-stage builds
  - Remove unnecessary packages

runtime_security:
  - Run as non-root user
  - Use read-only filesystem
  - Drop unnecessary capabilities
  - Use security profiles (seccomp, AppArmor)
  - Limit resources (memory, CPU)

network_security:
  - Use internal networks
  - Don't expose unnecessary ports
  - Use TLS for communication
  - Implement network policies

secrets_management:
  - Use Docker secrets
  - Never hardcode passwords
  - Use environment variables carefully
  - Rotate secrets regularly


# Docker Security Guide

## Overview

This guide provides comprehensive documentation for the **docker-security** skill in the custom-plugin-docker plugin.

## Category: Security

## Quick Start

### Prerequisites

- Familiarity with security concepts
- Development environment set up
- Plugin installed and configured

### Basic Usage

```bash
# Invoke the skill
claude "docker-security - [your task description]"

# Example
claude "docker-security - analyze the current implementation"
```

## Core Concepts

### Key Principles

1. **Consistency** - Follow established patterns
2. **Clarity** - Write readable, maintainable code
3. **Quality** - Validate before deployment

### Best Practices

- Always validate input data
- Handle edge cases explicitly
- Document your decisions
- Write tests for critical paths

## Common Tasks

### Task 1: Basic Implementation

```python
# Example implementation pattern
def implement_docker_security(input_data):
    """
    Implement docker-security functionality.

    Args:
        input_data: Input to process

    Returns:
        Processed result
    """
    # Validate input
    if not input_data:
        raise ValueError("Input required")

    # Process
    result = process(input_data)

    # Return
    return result
```

### Task 2: Advanced Usage

For advanced scenarios, consider:

- Configuration customization via `assets/config.yaml`
- Validation using `scripts/validate.py`
- Integration wi

What is this skill?

JSON Schema–backed skill config with semver versioning and security category enum

Validation block with strict_mode and auto_fix toggles for dev vs production

Markdown output format with optional examples for agent-readable reports

Integration hooks for git, linter, and formatter workflows

Environment overrides separating debug logging in development from warn-level production checks

Adoption & trust: 1 installs on skills.sh; 2 GitHub stars; 2/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

Journey fit

Primary fit

SKILL.md

READMESKILL.md - Docker Security

# docker-security Configuration
# Category: security
# Generated: 2025-12-30

skill:
  name: docker-security
  version: "1.0.0"
  category: security

settings:
  # Default settings for docker-security
  enabled: true
  log_level: info

  # Category-specific defaults
  validation:
    strict_mode: false
    auto_fix: false

  output:
    format: markdown
    include_examples: true

# Environment-specific overrides
environments:
  development:
    log_level: debug
    validation:
      strict_mode: false

  production:
    log_level: warn
    validation:
      strict_mode: true

# Integration settings
integrations:
  # Enable/disable integrations
  git: true
  linter: true
  formatter: true


{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "title": "docker-security Configuration Schema",
  "type": "object",
  "properties": {
    "skill": {
      "type": "object",
      "properties": {
        "name": {
          "type": "string"
        },
        "version": {
          "type": "string",
          "pattern": "^\\d+\\.\\d+\\.\\d+$"
        },
        "category": {
          "type": "string",
          "enum": [
            "api",
            "testing",
            "devops",
            "security",
            "database",
            "frontend",
            "algorithms",
            "machine-learning",
            "cloud",
            "containers",
            "general"
          ]
        }
      },
      "required": [
        "name",
        "version"
      ]
    },
    "settings": {
      "type": "object",
      "properties": {
        "enabled": {
          "type": "boolean",
          "default": true
        },
        "log_level": {
          "type": "string",
          "enum": [
            "debug",
            "info",
            "warn",
            "error"
          ]
        }
      }
    }
  },
  "required": [
    "skill"
  ]
}

# Docker Security Checklist
image_security:
  - Use official base images
  - Scan images with Trivy/Snyk
  - Pin image versions (no :latest)
  - Use multi-stage builds
  - Remove unnecessary packages

runtime_security:
  - Run as non-root user
  - Use read-only filesystem
  - Drop unnecessary capabilities
  - Use security profiles (seccomp, AppArmor)
  - Limit resources (memory, CPU)

network_security:
  - Use internal networks
  - Don't expose unnecessary ports
  - Use TLS for communication
  - Implement network policies

secrets_management:
  - Use Docker secrets
  - Never hardcode passwords
  - Use environment variables carefully
  - Rotate secrets regularly


# Docker Security Guide

## Overview

This guide provides comprehensive documentation for the **docker-security** skill in the custom-plugin-docker plugin.

## Category: Security

## Quick Start

### Prerequisites

- Familiarity with security concepts
- Development environment set up
- Plugin installed and configured

### Basic Usage

```bash
# Invoke the skill
claude "docker-security - [your task description]"

# Example
claude "docker-security - analyze the current implementation"
```

## Core Concepts

### Key Principles

1. **Consistency** - Follow established patterns
2. **Clarity** - Write readable, maintainable code
3. **Quality** - Validate before deployment

### Best Practices

- Always validate input data
- Handle edge cases explicitly
- Document your decisions
- Write tests for critical paths

## Common Tasks

### Task 1: Basic Implementation

```python
# Example implementation pattern
def implement_docker_security(input_data):
    """
    Implement docker-security functionality.

    Args:
        input_data: Input to process

    Returns:
        Processed result
    """
    # Validate input
    if not input_data:
        raise ValueError("Input required")

    # Process
    result = process(input_data)

    # Return
    return result
```

### Task 2: Advanced Usage

For advanced scenarios, consider:

- Configuration customization via `assets/config.yaml`
- Validation using `scripts/validate.py`
- Integration wi

Install

What is this skill?

Recommended Skills

Journey fit

Is Docker Security safe to install?

SKILL.md

This week for builders

Install

What is this skill?

Recommended Skills

Journey fit

Is Docker Security safe to install?

SKILL.md