acc-check-docker-secrets
Installation
SKILL.md
Docker Secrets Detection
Scan Docker configuration files for exposed secrets, credentials, and sensitive data.
File Scanning Targets
| File | Risk Level | Common Secrets |
|---|---|---|
Dockerfile |
High | ARG/ENV with passwords, inline credentials |
docker-compose*.yml |
High | Environment variables, volume-mounted secrets |
.env, .env.* |
Critical | Database passwords, API keys, tokens |
entrypoint.sh |
Medium | Hardcoded credentials in scripts |