Dockle

Dockle is an open-source container image linter that performs automated security assessments of Docker and OCI-compliant container images by checking adherence to best practices defined in the CIS Docker Benchmark, identifying misconfigurations such as root users, missing health checks, exposed secrets, and incorrect Dockerfile instructions to help organizations build hardened, production-ready container images. The tool provides fast, zero-configuration security scanning with five severity levels and detailed remediation guidance, making it suitable for integration into CI/CD pipelines to enforce container security standards before deployment.