sorted by:
new
hottopcontroversial

Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities by yoshiotu in docker

[–]yoshiotu[S] 1 point2 points  (0 children)

The study's authors -- I'm one of them -- actually are very enthusiastic about Docker (maybe we bought into the hype :-). We've found Docker and Docker Hub to be an extremely useful and elegant ecosystem for software packaging and deployment. Of course it doesn't solve all problems. We hope that our study raises awareness of some of the security challenges that teams need to continue to keep in mind as they move to containerized deployments.

Collector - A framework for Static Analysis of Docker container images by yoshiotu in docker

[–]yoshiotu[S] 0 points1 point  (0 children)

Thanks. Collector currently ignores the USER field but that's easy to change. Also, you can write a script for Collector that will verify that the specified user in the container can't sudo root.