Docker-violations

This is an open source project for the static analysis of vulnerabilities in Dockerfile, which improves the performance and layering in Dockerfile.

Currently tool can find violations in the below commands.

How to install it?

Docker Violations tool will be installed.

How to Run it?

python -m dockerviolations

Eg: python -m dockerviolations "C:\Dheeraj-PersonalData\My Git Hub Clones\docker-violations\Dockerfile"

Report Generation:

After running the tool, report gets generated in a HTML page which gets opened automatically.

This report comprises of line number(s) where the violation is present, type of violation and Recommendation.

Sample Report:

Name		Name	Last commit message	Last commit date
Latest commit History 45 Commits
.github/workflows		.github/workflows
dist		dist
docker_violations.egg-info		docker_violations.egg-info
dockerviolations		dockerviolations
resources		resources
tests		tests
.travis.yml		.travis.yml
MANIFEST.in		MANIFEST.in
README.md		README.md
coverage.xml		coverage.xml
pom.xml		pom.xml
requirements.txt		requirements.txt
setup.py		setup.py

Provide feedback