container-security-scanner

Solid

Container image and Kubernetes security scanning for CVEs, misconfigurations, and compliance

AI & Automation 814 stars 53 forks Updated today MIT

Install

View on GitHub

Quality Score: 95/100

Stars 20%

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Container Security Scanner Skill ## Purpose Automated container image and Kubernetes security scanning to identify vulnerabilities, misconfigurations, secrets, and compliance issues in containerized environments. ## Capabilities ### Image Vulnerability Scanning - Scan container images for known CVEs using Trivy, Grype, or Anchore - Detect vulnerabilities in OS packages and application dependencies - Generate SBOM (Software Bill of Materials) in CycloneDX or SPDX format - Track vulnerability severity (Critical, High, Medium, Low) ### Dockerfile Security Analysis - Check Dockerfile best practices and security issues - Identify privileged container configurations - Detect hardcoded secrets in Dockerfiles - Verify base image security and freshness ### Kubernetes Security Scanning - Run Kubernetes CIS benchmark checks using kube-bench - Analyze pod security policies and standards - Check RBAC configurations for over-permissive access - Detect insecure network policies ### Secrets Detection - Scan images for embedded secrets and credentials - Identify API keys, tokens, and passwords in layers - Check environment variable configurations ### Image Signature Verification - Verify container image signatures using cosign - Validate image provenance and attestations - Check image registry security configurations ### Compliance Reporting - Generate compliance reports (CIS, NIST, PCI-DSS) - Map findings to compliance controls - Track remediation status and timelines ## Integrat...

Details

Author: a5c-ai
Repository: a5c-ai/babysitter
Created: 4 months ago
Last Updated: today
Language: JavaScript
License: MIT

Integrates with

Docker · Infrastructure Kubernetes · Infrastructure

Related Skills

AI & Automation Featured

videodb

See, Understand, Act on video and audio. See- ingest from local files, URLs, RTSP/live feeds, or live record desktop; return realtime context and playable stream links. Understand- extract frames, build visual/semantic/temporal indexes, and search moments with timestamps and auto-clips. Act- transcode and normalize (codec, fps, resolution, aspect ratio), perform timeline edits (subtitles, text/image overlays, branding, audio overlays, dubbing, translation), generate media assets (image, audio, video), and create real time alerts for events from live streams or desktop capture.

196,640 Updated 2 days ago

affaan-m

AI & Automation Featured

ck

Persistent per-project memory for Claude Code. Auto-loads project context on session start, tracks sessions with git activity, and writes to native memory. Commands run deterministic Node.js scripts — behavior is consistent across model versions.

196,640 Updated 2 days ago

affaan-m

AI & Automation Featured

browser

Web browser automation with AI-optimized snapshots for claude-flow agents

55,973 Updated today

ruvnet