All Posts

Terminal
$ pathfinder scan --ruleset cpf/docker
Scanning Dockerfile...
Using 37 Docker security rules
Container running as root
→ Dockerfile:15 (CWE-250)
Docker socket exposed in volume
→ docker-compose.yml:8
!Using latest tag without digest
→ Dockerfile:1
2 critical1 mediumScanned in 0.8s
Engineering

Docker Security Rules: Detect 47 Container Vulnerabilities & Misconfigurations [2025]

Discover 47 Docker security rules to catch critical vulnerabilities. Prevent privilege escalation, socket exposure & misconfigurations with automated SAST scanning.

ShivasuryaShivasurya

Latest

Start securing your code

Install Code Pathfinder and eliminate false positives from your security workflow.

Get started