Docker Bench for Security

Docker Bench for Security is an open-source automated security auditing script developed by Docker that checks Docker host configurations and container deployments against dozens of common best practices defined in the CIS Docker Benchmark to identify security misconfigurations, weak permissions, and insecure defaults in production environments. The tool performs comprehensive assessments across host configuration, Docker daemon settings, container images, runtime configurations, and Docker security operations to help organizations harden their Docker infrastructure and improve overall container security posture.