Alexei Ledenev
Sep 3, 2018 · 1 min read

Docker still requires hardening, if you are planning to use it in production, and the Docker Bench tool is pretty useful too. It’s pity that this tool does not produce yet standard test result output, like TAP or XUNIT, while it’s possible to write a custom parser for the tool’s output.

Regarding my TAP compatible port, it was done as POC and I have no plans to update/maintain it. Docker security team did not accept my PR https://github.com/docker/docker-bench-security/pull/147.

    Alexei Ledenev

    Written by

    Kubernetes, Golang, AWS, Open-Source