dockerfile

Provides best practices for writing Dockerfiles, ensuring efficient and secure container builds.

Install this skill

75/100

Security score

The dockerfile skill was audited on Feb 9, 2026 and we found 9 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 17

Template literal with variable interpolation in command context

SourceSKILL.md

17	```dockerfile

medium line 96

Template literal with variable interpolation in command context

SourceSKILL.md

96	```dockerfile

medium line 143

Curl to non-GitHub URL

SourceSKILL.md

143	CMD curl -f http://localhost/ \|\| exit 1

medium line 175

Wget to non-GitHub URL

SourceSKILL.md

175	CMD wget --no-verbose --tries=1 --spider http://localhost:3000/health \|\| exit 1

low line 291

Access to .env file

SourceSKILL.md

291

.env

low line 292

Access to .env file

SourceSKILL.md

292

.env.*

low line 55

External URL reference

SourceSKILL.md

55	ADD https://example.com/file.tar.gz /app/

low line 143

External URL reference

SourceSKILL.md

143	CMD curl -f http://localhost/ \|\| exit 1

low line 175

External URL reference

SourceSKILL.md

175	CMD wget --no-verbose --tries=1 --spider http://localhost:3000/health \|\| exit 1

Scanned on Feb 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

openclaw devops backend devops-sre backend-developer fullstack-developer docker development

majiayu000/claude-skill-registry