====== Docker - Security ======

[[Docker:Security:Attack Docker exposed API|Attack Docker exposed API]]

[[Docker:Security:Common Security Issues Inside Public Docker Images|Common Security Issues Inside Public Docker Images]]

[[Docker:Security:Don’t leak sensitive information to docker images|Don’t leak sensitive information to docker images]]

[[Docker:Security:Find, fix and monitor for open source vulnerabilities|Find, fix and monitor for open source vulnerabilities]]

[[Docker:Security:Least privileged user|Least privileged user]]

[[Docker:Security:Prefer minimal base images|Prefer minimal base images]]

[[Docker:Security:Run Docker As Non-root User|Run Docker As Non-root User]]

[[Docker:Security:Sign and verify images to mitigate MITM attacks|Sign and verify images to mitigate MITM attacks]]

[[Docker:Security:Use a linter|Use a linter]]

[[Docker:Security:Use COPY instead of ADD|Use COPY instead of ADD]]

[[Docker:Security:Use fixed tags for immutability|Use fixed tags for immutability]]

[[Docker:Security:Use labels for metadata|Use labels for metadata]]

[[Docker:Security:Use multi-stage builds for small secure images|Use multi-stage builds for small secure images]]


----

===== References =====

https://snyk.io/