Container Security Assessment

This skill enables comprehensive security testing of containerized environments including Docker image scanning, Kubernetes cluster security auditing, container runtime analysis, and orchestration security assessment using tools like Trivy, Grype, Kubescape, kube-bench, and Falco.

When to Use This Skill

This skill should be invoked when:

• Scanning Docker/OCI images for vulnerabilities
• Auditing Kubernetes cluster security posture
• Testing container runtime configurations
• Reviewing Dockerfile security practices
• Checking CIS benchmarks for Docker/Kubernetes
• Analyzing container escape possibilities
• Implementing container security monitoring

Trigger Phrases

• "scan this Docker image for vulnerabilities"
• "audit Kubernetes cluster security"
• "check container configuration"