Skill

auditing

Use when checking Docker configuration for security gaps, performance issues, or production readiness problems in Dockerfile or docker-compose.yml

npx claudepluginhub jugrajsingh/skillgarden --plugin dockercraft

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/dockercraft:auditing

User invocable

Model invocable

Inline context

Default effort

Tool Access

This skill is limited to the following tools:

ReadGlobGrepTaskAskUserQuestion

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Comprehensive audit of Dockerfile and docker-compose.yml against best practices.

Supporting Files

references/audit-checks.md

SKILL.md

73 lines · ~525 tokens

Similar Skills

cpp-coding-standards

213.7k

Applies C++ Core Guidelines to write, review, or refactor C++ code. Enforces modern, safe, and idiomatic practices for C++17/20/23.

ecc

Stats

Parent stars0

MaintenanceExcellent

Last CommitMar 26, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

Audit Docker Configuration

Comprehensive audit of Dockerfile and docker-compose.yml against best practices.

Checks

Read references/audit-checks.md for the full checklist. Four categories:

Security - Non-root USER, no secrets in ENV/ARG, pinned base images, no --privileged, .dockerignore
Performance - Multi-stage builds, deps before source, cache mounts, minimal base image
Production Readiness - HEALTHCHECK, exec form CMD, PID 1 handling, restart policy, resource limits
Compose - Named networks/volumes, health conditions, no hardcoded secrets

Workflow

1. Find Docker Files

Glob: Dockerfile, Dockerfile.*, docker-compose*.yml, docker-compose*.yaml, .dockerignore

2. Run Checks

For each file found, evaluate all relevant checks.

3. Dispatch Reviewer Agent

For detailed Dockerfile analysis, dispatch the dockerfile-reviewer agent:

Task: dockerfile-reviewer agent
Input: Dockerfile path and optional compose path
Output: Structured review with severity levels

4. Generate Report

Use the audit-report.md template. Fill in:

Security checks with pass/fail/partial indicators
Performance checks
Production readiness checks
Compose checks (if applicable)
Findings with file:line references
Recommendations by priority

5. Ask About Fixes

After presenting the report, ask via AskUserQuestion:

"Fix all issues" - Apply automatic fixes where possible
"Fix critical only" - Only security and production issues
"Report only" - No changes

Priority Classification

Priority	Criteria
High	Security: root user, secrets in image, no .dockerignore
Medium	Performance: no multi-stage, no cache mounts, large base image
Low	Production: missing HEALTHCHECK, shell form CMD, no resource limits

auditing

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

auditing

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

Audit Docker Configuration

Checks

Workflow

1. Find Docker Files

2. Run Checks

3. Dispatch Reviewer Agent

4. Generate Report

5. Ask About Fixes

Priority Classification

Similar Skills

Help us improve

Audit Docker Configuration

Checks

Workflow

1. Find Docker Files

2. Run Checks

3. Dispatch Reviewer Agent

4. Generate Report

5. Ask About Fixes

Priority Classification