| name | owasp-docker |
| description | OWASP Docker Top 6 knowledge base for identifying, assessing, and remediating Docker container security risks. |
| license | CC-BY-NC-SA-4.0 |
| user-invocable | false |
| metadata | {"authors":"OWASP Docker Security Project","spec_version":"1.0","framework_revision":"1.0.0","last_updated":"2026-02-13","skill_based_on":"https://github.com/chris-buckley/agnostic-prompt-standard","content_based_on":"https://owasp.org/www-project-docker-top-10/"} |
OWASP® Docker Top 6 — Skill Entry
This SKILL.md is the entrypoint for the OWASP Docker Top 6 skill.
The skill encodes the OWASP Docker Security Top 6 as structured, machine-readable references
that an agent can query to identify, assess, and remediate Docker container security risks.
Normative references (Docker Top 6)
- 00 Vulnerability Index
- 01 Secure User Mapping
- 02 Patch Management Strategy
- 03 Network Segmentation and Firewalling
- 04 Secure Defaults and Hardening
- 05 Maintain Security Contexts
- 06 Resource Protection
Skill layout
SKILL.md — this file (skill entrypoint).
references/ — the Docker Top 6 normative documents.
00-vulnerability-index.md — index of all vulnerability identifiers, categories, and cross-references.
01 through 06 — one document per vulnerability aligned with OWASP Docker Security numbering.
Third-Party Attribution
Copyright © OWASP Foundation.
OWASP® Docker Top 10 content is derived from works by the
OWASP Foundation, licensed under CC BY-NC-SA 4.0
(https://creativecommons.org/licenses/by-nc-sa/4.0/).
Source: https://owasp.org/www-project-docker-top-10/
Modifications: Vulnerability descriptions restructured into agent-consumable reference
documents with added detection and remediation guidance.
OWASP® is a registered trademark of the OWASP Foundation. Use does not imply endorsement.